CVE-2021-22925 - curl supports the `-t` command line option, known as `CURLOPT_TELNETOPTIONS`in libcurl. This rarely

CVE-2021-22925

Summary

curl supports the `-t` command line option, known as `CURLOPT_TELNETOPTIONS`in libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending `NEW_ENV` variables, libcurlcould be made to pass on uninitialized data from a stack based buffer to theserver. Therefore potentially revealing sensitive internal information to theserver using a clear-text network protocol.This could happen because curl did not call and use sscanf() correctly whenparsing the string provided by the application.

References

Vulnerable Configurations

cpe:2.3:a:haxx:curl:7.7:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.7:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.7.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.7.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.7.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.7.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.7.3:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.7.3:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.8:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.8:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.8.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.8.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.9:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.9:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.9.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.9.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.9.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.9.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.9.3:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.9.3:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.9.4:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.9.4:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.9.5:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.9.5:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.9.6:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.9.6:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.9.7:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.9.7:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.9.8:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.9.8:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.10:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.10:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.10.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.10.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.10.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.10.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.10.3:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.10.3:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.10.4:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.10.4:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.10.5:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.10.5:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.10.6:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.10.6:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.10.7:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.10.7:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.10.8:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.10.8:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.11.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.11.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.11.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.11.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.11.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.11.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.12.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.12.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.12.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.12.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.12.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.12.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.12.3:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.12.3:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.13.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.13.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.13.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.13.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.13.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.13.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.14.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.14.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.14.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.14.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.15.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.15.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.15.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.15.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.15.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.15.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.15.3:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.15.3:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.15.4:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.15.4:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.15.5:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.15.5:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.16.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.16.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.16.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.16.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.16.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.16.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.16.3:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.16.3:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.16.4:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.16.4:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.17.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.17.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.17.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.17.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.18.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.18.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.18.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.18.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.18.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.18.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.19.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.19.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.19.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.19.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.19.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.19.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.19.3:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.19.3:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.19.4:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.19.4:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.19.5:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.19.5:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.19.6:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.19.6:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.19.7:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.19.7:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.19.7-53:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.19.7-53:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.20.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.20.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.20.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.20.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.21.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.21.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.21.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.21.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.21.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.21.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.21.3:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.21.3:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.21.4:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.21.4:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.21.5:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.21.5:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.21.6:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.21.6:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.21.7:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.21.7:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.22.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.22.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.23.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.23.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.23.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.23.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.24.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.24.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.25.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.25.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.26.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.26.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.27.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.27.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.28.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.28.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.28.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.28.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.29.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.29.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.30.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.30.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.31.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.31.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.32.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.32.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.33.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.33.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.34.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.34.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.35.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.35.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.36.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.36.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.37.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.37.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.37.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.37.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.38.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.38.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.39.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.39.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.40.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.40.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.41.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.41.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.42.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.42.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.42.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.42.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.43.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.43.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.44.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.44.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.45.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.45.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.46.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.46.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.47.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.47.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.47.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.47.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.48.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.48.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.49.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.49.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.49.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.49.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.50.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.50.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.50.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.50.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.50.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.50.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.50.3:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.50.3:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.51.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.51.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.52.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.52.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.52.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.52.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.53.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.53.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.53.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.53.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.54.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.54.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.54.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.54.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.55.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.55.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.55.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.55.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.56.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.56.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.56.0:*:*:*:*:*:x86:*
cpe:2.3:a:haxx:curl:7.56.0:*:*:*:*:*:x86:*
cpe:2.3:a:haxx:curl:7.56.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.56.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.56.1:*:*:*:*:*:x86:*
cpe:2.3:a:haxx:curl:7.56.1:*:*:*:*:*:x86:*
cpe:2.3:a:haxx:curl:7.57.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.57.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.58.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.58.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.59.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.59.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.60.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.60.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.61.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.61.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.61.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.61.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.62.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.62.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.63.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.63.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.64.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.64.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.64.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.64.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.65.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.65.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.65.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.65.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.65.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.65.2:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.65.3:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.65.3:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.66.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.66.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.67.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.67.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.68.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.68.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.69.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.69.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.69.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.69.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.70.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.70.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.71.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.71.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.71.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.71.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.72.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.72.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.73.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.73.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.74.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.74.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.75.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.75.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.76.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.76.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.76.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.76.1:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.77.0:*:*:*:*:*:*:*
cpe:2.3:a:haxx:curl:7.77.0:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:11.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:11.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.15.7:-:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.15.7:-:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-001:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-001:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-002:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-002:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-003:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-003:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-004:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-004:*:*:*:*:*:*
cpe:2.3:o:apple:macos:11.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:11.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:11.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:11.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:11.1.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:11.1.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:11.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:11.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:11.2.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:11.2.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:11.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:11.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:11.3.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:11.3.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:11.4:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:11.4:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:11.5:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:11.5:*:*:*:*:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.59:*:*:*:*:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.59:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:8.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:8.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:8.0.15:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:8.0.15:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:8.0.17:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:8.0.17:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:8.0.22:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:8.0.22:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:8.0.23:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:8.0.23:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:8.0.24:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:8.0.24:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:8.0.25:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:8.0.25:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:8.0.26:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:8.0.26:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:5.7.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:5.7.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:5.7.26:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:5.7.26:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:5.7.27:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:5.7.27:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:5.7.28:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:5.7.28:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:5.7.32:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:5.7.32:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:5.7.33:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:5.7.33:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:5.7.34:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:5.7.34:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:5.7.35:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:5.7.35:*:*:*:*:*:*:*
cpe:2.3:a:siemens:sinec_infrastructure_network_services:-:*:*:*:*:*:*:*
cpe:2.3:a:siemens:sinec_infrastructure_network_services:-:*:*:*:*:*:*:*
cpe:2.3:a:siemens:sinec_infrastructure_network_services:1.0.1:-:*:*:*:*:*:*
cpe:2.3:a:siemens:sinec_infrastructure_network_services:1.0.1:-:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_remote_connect_server:-:*:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_remote_connect_server:-:*:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_remote_connect_server:1.0:sp3_hf1:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_remote_connect_server:1.0:sp3_hf1:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_remote_connect_server:1.1:*:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_remote_connect_server:1.1:*:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_remote_connect_server:1.2:*:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_remote_connect_server:1.2:*:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_remote_connect_server:1.3:*:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_remote_connect_server:1.3:*:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_remote_connect_server:2.0:-:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_remote_connect_server:2.0:-:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_remote_connect_server:2.0:hf1:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_remote_connect_server:2.0:hf1:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_remote_connect_server:3.0:*:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_remote_connect_server:3.0:*:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_remote_connect_server:3.0:sp1:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_remote_connect_server:3.0:sp1:*:*:*:*:*:*
cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h300e_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h300e_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h300e:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h300e:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h500e_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h500e_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h500e:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h500e:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h700e_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h700e_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h700e:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h700e:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:9.1.0:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:9.1.0:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:9.0.0:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:9.0.0:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:9.0.1:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:9.0.1:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:9.0.2:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:9.0.2:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:9.0.3:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:9.0.3:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:9.0.4:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:9.0.4:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:9.0.5:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:9.0.5:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:8.2.6:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:8.2.6:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:8.2.7:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:8.2.7:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:8.2.8:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:8.2.8:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:8.2.9:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:8.2.9:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:8.2.10:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:8.2.10:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:8.2.11:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:8.2.11:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 27-03-2024 - 15:11)
Impact:
Exploitability:

CWE

CWE-908

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:N/A:N

Last major update

27-03-2024 - 15:11

Published

05-08-2021 - 21:15

Last modified

27-03-2024 - 15:11