Vulnerability Details CVE-2017-8818
curl and libcurl before 7.57.0 on 32-bit platforms allow attackers to cause a denial of service (out-of-bounds access and application crash) or possibly have unspecified other impact because too little memory is allocated for interfacing to an SSL library.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.6%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- http://security.cucumberlinux.com/security/details.php?id=163
- http://www.securityfocus.com/bid/102014
- http://www.securitytracker.com/id/1039898
- https://curl.haxx.se/docs/adv_2017-af0a.html
- https://security.gentoo.org/glsa/201712-04
- http://security.cucumberlinux.com/security/details.php?id=163
- http://www.securityfocus.com/bid/102014
- http://www.securitytracker.com/id/1039898
- https://curl.haxx.se/docs/adv_2017-af0a.html
- https://security.gentoo.org/glsa/201712-04