VDB
ALPINE-CVE-2020-8286
ALPINE-CVE-2020-8286
PUBLISHED
CVSS 7.5 HIGH
curl 7.41.0 through 7.73.0 is vulnerable to an improper check for certificate revocation due to insufficient verification of the OCSP response.
Risk Scores
CVSS v3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Alpine:v3.19 | curl | 7.73.0-r0, 7.19.2-r1, 7.19.4-r0 |
| Alpine:v3.13 | curl | 7.19.2-r0, 7.19.2-r1, 7.19.4-r0 |
| Alpine:v3.14 | curl | 0, 7.73.0-r0, 7.72.0-r0 |
| Alpine:v3.11 | curl | 7.67.0-r1, 7.67.0-r2, 7.19.4-r0 |
| Alpine:v3.20 | curl | 7.65.1-r0, 7.62.0-r2, 7.62.0-r1 |
| Alpine:v3.16 | curl | 7.73.0-r0, 7.19.2-r1, 7.50.3-r1 |
| Alpine:v3.21 | curl | 7.33.0-r0, 0, 7.19.2-r0 |
| Alpine:v3.23 | curl | 7.72.0-r0, 7.71.1-r0, 7.71.0-r1 |
| Alpine:v3.22 | curl | 0, 7.73.0-r0, 7.72.0-r0 |
| Alpine:v3.17 | curl | 7.50.3-r0, 7.50.3-r1, 7.51.0-r0 |
| Alpine:v3.12 | curl | 7.27.0-r0, 7.69.1-r2, 7.69.1-r1 |
| Alpine:v3.15 | curl | 0, 7.73.0-r0, 7.19.2-r0 |
| Alpine:v3.10 | curl | 7.66.0-r1, 7.66.0-r2, 0 |
| Alpine:v3.18 | curl | 7.50.0-r0, 7.49.1-r0, 7.49.0-r0 |
Timeline
- Dec 14, 2020 CVE Published
- Dec 3, 2025 CVE Updated
- Apr 30, 2026 Distribution Patch