CVE-2011-2192 in cURLinformazioni

Riassunto

di MITRE

The Curl_input_negotiate function in http_negotiate.c in libcurl 7.10.6 through 7.21.6, as used in curl and other products, always performs credential delegation during GSSAPI authentication, which allows remote servers to impersonate clients via GSSAPI requests.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

31/05/2011

Divulgazione

07/07/2011

Moderazione

accettato

Voce

VDB-57891

CPE

pronto

CWE

CWE-255 (confermato)

CVSS

4.3 (NVD)

EPSS

0.02049

KEV

Attività

molto basso

Settore

Hostingprovider, Telecommunication, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-2192
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-2192
CVE Details	https://www.cvedetails.com/cve/CVE-2011-2192/

◂ Precedente Visione D'ensemble Il prossimo ▸

Might our Artificial Intelligence support you?

Check our Alexa App!