CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-1000301

curl version curl 7.20.0 to and including curl 7.59.0 contains a CWE-126: Buffer Over-read vulnerability in denial of service that can result in curl can be tricked into reading data beyond the end of a heap based buffer used to store downloaded RTSP content.. This vulnerability appears to have been fixed in curl < 7.20.0 and curl >= 7.60.0.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.022

EPSS Ranking 83.6%

CVSS Severity

CVSS v3 Score 9.1

CVSS v2 Score 6.4

References

Products affected by CVE-2018-1000301

Haxx » Curl » Version: 7.20.0

cpe:2.3:a:haxx:curl:7.20.0
Haxx » Curl » Version: 7.20.1

cpe:2.3:a:haxx:curl:7.20.1
Haxx » Curl » Version: 7.21.0

cpe:2.3:a:haxx:curl:7.21.0
Haxx » Curl » Version: 7.21.1

cpe:2.3:a:haxx:curl:7.21.1
Haxx » Curl » Version: 7.21.2

cpe:2.3:a:haxx:curl:7.21.2
Haxx » Curl » Version: 7.21.3

cpe:2.3:a:haxx:curl:7.21.3
Haxx » Curl » Version: 7.21.4

cpe:2.3:a:haxx:curl:7.21.4
Haxx » Curl » Version: 7.21.5

cpe:2.3:a:haxx:curl:7.21.5
Haxx » Curl » Version: 7.21.6

cpe:2.3:a:haxx:curl:7.21.6
Haxx » Curl » Version: 7.21.7

cpe:2.3:a:haxx:curl:7.21.7
Haxx » Curl » Version: 7.22.0

cpe:2.3:a:haxx:curl:7.22.0
Haxx » Curl » Version: 7.23.0

cpe:2.3:a:haxx:curl:7.23.0
Haxx » Curl » Version: 7.23.1

cpe:2.3:a:haxx:curl:7.23.1
Haxx » Curl » Version: 7.24.0

cpe:2.3:a:haxx:curl:7.24.0
Haxx » Curl » Version: 7.25.0

cpe:2.3:a:haxx:curl:7.25.0
Haxx » Curl » Version: 7.26.0

cpe:2.3:a:haxx:curl:7.26.0
Haxx » Curl » Version: 7.27.0

cpe:2.3:a:haxx:curl:7.27.0
Haxx » Curl » Version: 7.28.0

cpe:2.3:a:haxx:curl:7.28.0
Haxx » Curl » Version: 7.28.1

cpe:2.3:a:haxx:curl:7.28.1
Haxx » Curl » Version: 7.29.0

cpe:2.3:a:haxx:curl:7.29.0
Haxx » Curl » Version: 7.30.0

cpe:2.3:a:haxx:curl:7.30.0
Haxx » Curl » Version: 7.31.0

cpe:2.3:a:haxx:curl:7.31.0
Haxx » Curl » Version: 7.32.0

cpe:2.3:a:haxx:curl:7.32.0
Haxx » Curl » Version: 7.33.0

cpe:2.3:a:haxx:curl:7.33.0
Haxx » Curl » Version: 7.34.0

cpe:2.3:a:haxx:curl:7.34.0
Haxx » Curl » Version: 7.35.0

cpe:2.3:a:haxx:curl:7.35.0
Haxx » Curl » Version: 7.36.0

cpe:2.3:a:haxx:curl:7.36.0
Haxx » Curl » Version: 7.37.0

cpe:2.3:a:haxx:curl:7.37.0
Haxx » Curl » Version: 7.37.1

cpe:2.3:a:haxx:curl:7.37.1
Haxx » Curl » Version: 7.38.0

cpe:2.3:a:haxx:curl:7.38.0
Haxx » Curl » Version: 7.39.0

cpe:2.3:a:haxx:curl:7.39.0
Haxx » Curl » Version: 7.40.0

cpe:2.3:a:haxx:curl:7.40.0
Haxx » Curl » Version: 7.41.0

cpe:2.3:a:haxx:curl:7.41.0
Haxx » Curl » Version: 7.42.0

cpe:2.3:a:haxx:curl:7.42.0
Haxx » Curl » Version: 7.42.1

cpe:2.3:a:haxx:curl:7.42.1
Haxx » Curl » Version: 7.43.0

cpe:2.3:a:haxx:curl:7.43.0
Haxx » Curl » Version: 7.44.0

cpe:2.3:a:haxx:curl:7.44.0
Haxx » Curl » Version: 7.45.0

cpe:2.3:a:haxx:curl:7.45.0
Haxx » Curl » Version: 7.46.0

cpe:2.3:a:haxx:curl:7.46.0
Haxx » Curl » Version: 7.47.0

cpe:2.3:a:haxx:curl:7.47.0
Haxx » Curl » Version: 7.47.1

cpe:2.3:a:haxx:curl:7.47.1
Haxx » Curl » Version: 7.48.0

cpe:2.3:a:haxx:curl:7.48.0
Haxx » Curl » Version: 7.49.0

cpe:2.3:a:haxx:curl:7.49.0
Haxx » Curl » Version: 7.49.1

cpe:2.3:a:haxx:curl:7.49.1
Haxx » Curl » Version: 7.50.0

cpe:2.3:a:haxx:curl:7.50.0
Haxx » Curl » Version: 7.50.1

cpe:2.3:a:haxx:curl:7.50.1
Haxx » Curl » Version: 7.50.2

cpe:2.3:a:haxx:curl:7.50.2
Haxx » Curl » Version: 7.50.3

cpe:2.3:a:haxx:curl:7.50.3
Haxx » Curl » Version: 7.51.0

cpe:2.3:a:haxx:curl:7.51.0
Haxx » Curl » Version: 7.52.0

cpe:2.3:a:haxx:curl:7.52.0
Haxx » Curl » Version: 7.52.1

cpe:2.3:a:haxx:curl:7.52.1
Haxx » Curl » Version: 7.53.0

cpe:2.3:a:haxx:curl:7.53.0
Haxx » Curl » Version: 7.53.1

cpe:2.3:a:haxx:curl:7.53.1
Haxx » Curl » Version: 7.54.0

cpe:2.3:a:haxx:curl:7.54.0
Haxx » Curl » Version: 7.54.1

cpe:2.3:a:haxx:curl:7.54.1
Haxx » Curl » Version: 7.55.0

cpe:2.3:a:haxx:curl:7.55.0
Haxx » Curl » Version: 7.55.1

cpe:2.3:a:haxx:curl:7.55.1
Haxx » Curl » Version: 7.56.0

cpe:2.3:a:haxx:curl:7.56.0
Haxx » Curl » Version: 7.56.1

cpe:2.3:a:haxx:curl:7.56.1
Haxx » Curl » Version: 7.57.0

cpe:2.3:a:haxx:curl:7.57.0
Haxx » Curl » Version: 7.58.0

cpe:2.3:a:haxx:curl:7.58.0
Haxx » Curl » Version: 7.59.0

cpe:2.3:a:haxx:curl:7.59.0
Oracle » Communications Webrtc Session Controller » Version: 7.0

cpe:2.3:a:oracle:communications_webrtc_session_controller:7.0
Oracle » Communications Webrtc Session Controller » Version: 7.1

cpe:2.3:a:oracle:communications_webrtc_session_controller:7.1
Oracle » Enterprise Manager Ops Center » Version: 12.2.2

cpe:2.3:a:oracle:enterprise_manager_ops_center:12.2.2
Oracle » Enterprise Manager Ops Center » Version: 12.3.3

cpe:2.3:a:oracle:enterprise_manager_ops_center:12.3.3
Oracle » Peoplesoft Enterprise Peopletools » Version: 8.55

cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.55
Oracle » Peoplesoft Enterprise Peopletools » Version: 8.56

cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.56
Oracle » Peoplesoft Enterprise Peopletools » Version: 8.57

cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57
Canonical » Ubuntu Linux » Version: 12.04

cpe:2.3:o:canonical:ubuntu_linux:12.04
Canonical » Ubuntu Linux » Version: 14.04

cpe:2.3:o:canonical:ubuntu_linux:14.04
Canonical » Ubuntu Linux » Version: 16.04

cpe:2.3:o:canonical:ubuntu_linux:16.04
Canonical » Ubuntu Linux » Version: 17.10

cpe:2.3:o:canonical:ubuntu_linux:17.10
Canonical » Ubuntu Linux » Version: 18.04

cpe:2.3:o:canonical:ubuntu_linux:18.04
Debian » Debian Linux » Version: 7.0

cpe:2.3:o:debian:debian_linux:7.0
Debian » Debian Linux » Version: 8.0

cpe:2.3:o:debian:debian_linux:8.0
Debian » Debian Linux » Version: 9.0

cpe:2.3:o:debian:debian_linux:9.0
Redhat » Enterprise Linux Desktop » Version: 7.0

cpe:2.3:o:redhat:enterprise_linux_desktop:7.0
Redhat » Enterprise Linux Server » Version: 7.0

cpe:2.3:o:redhat:enterprise_linux_server:7.0
Redhat » Enterprise Linux Workstation » Version: 7.0

cpe:2.3:o:redhat:enterprise_linux_workstation:7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-1000301

Products

Pricing

Contact Us