H1-714215 — Vulnetix

H1-714215 PUBLISHED CVSS 7.900000095367432 HIGH

curl on Windows can be forced to execute code via OpenSSL environment variables

Risk Scores

CVSS 3.1

7.900000095367432

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N

Exploit Intelligence

curl on Windows can be forced to execute code via OpenSSL environment variables (hackerone)
curl on Windows can be forced to execute code via OpenSSL environment variables (hackerone)
Rapport_149185019.html (github-poc)
cve_db.json (github-poc)

Timeline

Feb 8, 2021 CVE Published
Feb 8, 2021 PoC Published

References

curl on Windows can be forced to execute code via OpenSSL environment variables advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›