curl before version 7.51.0 uses outdated IDNA 2003 standard to handle International Domain Names and this may lead users to potentially and unknowingly issue network transfer requests to the wrong host.

References

bugzilla.redhat.com/show_bug.cgi?id=1388392

curl.haxx.se/docs/adv_20161102K.html

osv 1

alpinelinux 1

nessus 18

openvas 10

ubuntucve 1

prion 1

f5 1

veracode 1

debiancve 1

cve 1

cvelist 1

nvd 1

ibm 3

archlinux 6

freebsd 1

altlinux 1

oraclelinux 1

slackware 1

gentoo 1

rosalinux 1

redhat 2

apple 2

oracle 1

osv

CVE-2016-8625

2018-08-01 06:29:00

alpinelinux

CVE-2016-8625

2018-08-01 06:29:00

nessus

EulerOS Virtualization 3.0.6.0 : curl-openssl (EulerOS-SA-2020-1758)

2020-07-01 00:00:00

EulerOS Virtualization 3.0.6.0 : curl (EulerOS-SA-2020-1762)

2020-07-01 00:00:00

EulerOS 2.0 SP3 : curl (EulerOS-SA-2020-1376)

2020-04-15 00:00:00

openvas

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2020-1762)

2020-07-03 00:00:00

Huawei EulerOS: Security Advisory for curl-openssl (EulerOS-SA-2020-1758)

2020-07-03 00:00:00

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2020-1376)

2020-04-16 00:00:00

ubuntucve

CVE-2016-8625

2018-08-01 00:00:00

prion

Code injection

2018-08-01 06:29:00

cURL and libcurl vulnerability CVE-2016-8625

2017-04-14 19:37:00

veracode

Unauthorized Requests

2018-08-02 09:04:08

debiancve

CVE-2016-8625

2018-08-01 06:29:00

cve

CVE-2016-8625

2018-08-01 06:29:00

cvelist

CVE-2016-8625

2018-08-01 06:00:00

nvd

CVE-2016-8625

2018-08-01 06:29:00

ibm

Security Bulletin: Vulnerabilities in cURL component shipped with IBM Rational ClearCase (CVE-2016-8624, CVE-2016-8625)

2018-07-10 08:34:12

Security Bulletin: Vulnerabilities in libcurl and cURL affect Rational DOORS

2020-05-01 07:21:03

Security Bulletin: Cloud Pak for Security uses packages that are vulnerable to multiple CVEs

2023-03-08 18:05:21

archlinux

[ASA-201611-9] libcurl-gnutls: multiple issues

2016-11-03 00:00:00

[ASA-201611-8] libcurl-compat: multiple issues

2016-11-03 00:00:00

[ASA-201611-5] lib32-libcurl-compat: multiple issues

2016-11-02 00:00:00

freebsd

cURL -- multiple vulnerabilities

2016-11-02 00:00:00

altlinux

Security fix for the ALT Linux 8 package curl version 7.51.0-alt1

2016-11-02 00:00:00

oraclelinux

curl security update

2019-05-21 00:00:00

slackware

[slackware-security] curl

2016-11-04 03:34:42

gentoo

cURL: Multiple vulnerabilities

2017-01-19 00:00:00

rosalinux

Advisory ROSA-SA-2021-1818

2021-07-02 16:36:57

redhat

(RHSA-2018:2486) Important: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 security update

2018-08-16 16:05:21

(RHSA-2018:3558) Moderate: httpd24 security, bug fix, and enhancement update

2018-11-13 08:00:33

apple

About the security content of macOS Sierra 10.12.2, Security Update 2016-003 El Capitan, and Security Update 2016-007 Yosemite

2016-12-13 00:00:00

About the security content of macOS Sierra 10.12.2, Security Update 2016-003 El Capitan, and Security Update 2016-007 Yosemite - Apple Support

2020-07-27 08:14:17

oracle

Oracle Critical Patch Update Advisory - April 2017

2017-04-18 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.006 Low

EPSS

Percentile

77.9%

JSON

Related for RH:CVE-2016-8625