CVE-2015-3148 in cURLinformation

Résumé (Anglaise)

cURL and libcurl 7.10.6 through 7.41.0 does not properly re-use authenticated Negotiate connections, which allows remote attackers to connect as other users via a request.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Réserver

10/04/2015

Divulgation

24/04/2015

Statut

Confirmé

Entrées

VulDB provides additional information and datapoints for this CVE:

ID	Vulnérabilité	CWE	Exp	Con	CVE
75128	cURL/libcURL Request élévation de privilèges	284	Non défini	Correctif officiel	CVE-2015-3148

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PrécédentAperçuSuivant ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!