VDB
WID-SEC-W-2023-1641
WID-SEC-W-2023-1641
PUBLISHED
CVSS 8.699999809265137 HIGH
cURL ist eine Client-Software, die das Austauschen von Dateien mittels mehrerer Protokolle wie z. B. HTTP oder FTP erlaubt. libcurl ist eine Bibliothek für Client-Software, die das Austauschen von Dateien mittels mehrerer Protokolle wie z. B. HTTP oder FTP erlaubt.
Risk Scores
CVSS v4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu Linux | ||
| Dell Avamar 19.12 | ||
| Gentoo Linux | ||
| Open Source libcurl <7.62.0 | ||
| Dell NetWorker 19.9.0.1 | ||
| Debian Linux | ||
| SUSE Linux | ||
| Open Source cURL 7.62.0 | ||
| Dell Avamar <19.12 | ||
| Open Source cURL <7.62.0 | ||
| Red Hat Enterprise Linux | ||
| Dell NetWorker <19.9.0.1 | ||
| Open Source libcurl 7.62.0 |
Timeline
- Oct 30, 2018 CVE Published
- Feb 4, 2025 CVE Updated
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2018/wid-sec-w-2023-1641.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1641 advisory
- https://curl.haxx.se/docs/CVE-2018-16842.html url
- https://curl.haxx.se/docs/CVE-2018-16840.html url
- https://curl.haxx.se/docs/CVE-2018-16839.html url
- http://www.ubuntu.com/usn/usn-3805-1 url
- https://www.suse.com/support/update/announcement/2018/suse-su-20183608-1.html url
- https://www.suse.com/support/update/announcement/2018/suse-su-20183607-1.html url
- https://www.debian.org/security/2018/dsa-4331 url
- https://www.suse.com/support/update/announcement/2018/suse-su-20183624-1.html url
- https://www.suse.com/support/update/announcement/2018/suse-su-20183681-1.html url
- https://www.suse.com/support/update/announcement/2019/suse-su-20190339-1.html url
- https://security.gentoo.org/glsa/201903-03 url
- https://www.suse.com/support/update/announcement/2019/suse-su-20190996-1.html url
- https://access.redhat.com/errata/RHSA-2019:2181 url
- https://www.dell.com/support/kbdoc/de-de/000215497/dsa-2023-233-security-update-for-dell-networker-curl-7-51-0 url
- https://www.dell.com/support/kbdoc/de-de/000281275/dsa-2025-071-security-update-for-dell-avamar-for-multiple-component-vulnerabilities url