CVE: Common Vulnerabilities and Exposures

Required CVE Record Information

Description

curl 7.41.0 through 7.73.0 is vulnerable to an improper check for certificate revocation due to insufficient verification of the OCSP response.

CWE 1 Total

Learn more

CWE-295: Improper Certificate Validation (CWE-295)

Product Status

Learn more

Versions 1 Total

Default Status: unknown

affected

References 19 Total

Updated: 2024-08-04

This container includes required additional information provided by the CVE Program for this vulnerability.

References 19 Total

https://hackerone.com/reports/1048457
external site
x_transferred
https://curl.se/docs/CVE-2020-8286.html
external site
x_transferred
lists.fedoraproject.org: FEDORA-2020-ceaf490686
external site
vendor-advisoryx_transferred
lists.debian.org: [debian-lts-announce] 20201219 [SECURITY] [DLA 2500-1] curl security update
external site
mailing-listx_transferred
lists.fedoraproject.org: FEDORA-2020-7ab62c73bc
external site
vendor-advisoryx_transferred
security.gentoo.org: GLSA-202012-14
external site
vendor-advisoryx_transferred
debian.org: DSA-4881
external site
vendor-advisoryx_transferred
seclists.org: 20210427 APPLE-SA-2021-04-26-3 Security Update 2021-002 Catalina
external site
mailing-listx_transferred
seclists.org: 20210427 APPLE-SA-2021-04-26-2 macOS Big Sur 11.3
external site
mailing-listx_transferred
seclists.org: 20210427 APPLE-SA-2021-04-26-4 Security Update 2021-003 Mojave
external site
mailing-listx_transferred
https://www.oracle.com/security-alerts/cpuApr2021.html
external site
x_transferred
https://security.netapp.com/advisory/ntap-20210122-0007/
external site
x_transferred
https://support.apple.com/kb/HT212325
external site
x_transferred
https://support.apple.com/kb/HT212326
external site
x_transferred
https://support.apple.com/kb/HT212327
external site
x_transferred
https://cert-portal.siemens.com/productcert/pdf/ssa-200951.pdf
external site
x_transferred
https://www.oracle.com//security-alerts/cpujul2021.html
external site
x_transferred
https://www.oracle.com/security-alerts/cpuapr2022.html
external site
x_transferred
https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
external site
x_transferred

Authorized Data Publishers

Learn more

Common vulnerabilities and Exposures (CVE)

Required CVE Record Information

CNA: HackerOne

Description

CWE 1 Total

Product Status

References 19 Total

CVE Program

References 19 Total

Authorized Data Publishers

CISA-ADP