| Max CVSS | 5.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-8284 | 4.3 |
A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed,
|
27-03-2024 - 15:50 | 14-12-2020 - 20:15 | |
| CVE-2020-8285 | 5.0 |
curl 7.21.0 to and including 7.73.0 is vulnerable to uncontrolled recursion due to a stack overflow issue in FTP wildcard match parsing.
|
27-03-2024 - 15:47 | 14-12-2020 - 20:15 | |
| CVE-2020-8286 | 5.0 |
curl 7.41.0 through 7.73.0 is vulnerable to an improper check for certificate revocation due to insufficient verification of the OCSP response.
|
27-03-2024 - 15:47 | 14-12-2020 - 20:15 |