0.002 Low
EPSS
Percentile
59.9%
curl is vulnerable to information disclosure. The wrong buffer is sent to the user when trying to obtain a file using file://. This can result in confidential information being disclosed.
file://
www.securityfocus.com/bid/100281
www.securitytracker.com/id/1039119
curl.haxx.se/0809C.patch
curl.haxx.se/docs/adv_20170809C.html
security.gentoo.org/glsa/201709-14