Home

CVE-2019-5482

Description

Heap buffer overflow in the TFTP protocol handler in cURL 7.19.4 to 7.65.3.

Risk Information

Base Score
9.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
8.332

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities are affected in Mysql 8.0.18Windows
Vulnerability CVE-2019-5481,CVE-2019-5482 are affected in Curl For Windows 7.65.3Windows
Multiple vulnerabilities are affected in Mysql 5.7.28Windows
Vulnerabilities CVE-2019-5481,CVE-2019-5482,CVE-2019-5443 are fixed in Curl For Windows 7.66.0Windows
Multiple Vulnerabilities are affected in Netapp Oncommand Insight 2.3Windows
Multiple vulnerabilities are affected in Oracle HTTP Server 12.2.1.3.0Windows
Multiple vulnerabilities are affected in Oracle HTTP Server 12.2.1.4.0Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 10.5Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 10.6Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.1Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.2Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.3Windows
Multiple Vulnerabilities are affected in Netapp Snapcenter 2.3Windows
Multiple Vulnerabilities are affected in Netapp Oncommand Workflow Automation 2.3Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.0Windows
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) curl_7.58.0-2ubuntu3.8_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) curl_7.58.0-2ubuntu3.8_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) curl_7.64.0-2ubuntu1.2_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) curl_7.64.0-2ubuntu1.2_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) curl_7.47.0-1ubuntu2.14_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) curl_7.47.0-1ubuntu2.14_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) libcurl3_7.47.0-1ubuntu2.14_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) libcurl3_7.47.0-1ubuntu2.14_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) libcurl4_7.58.0-2ubuntu3.8_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) libcurl4_7.58.0-2ubuntu3.8_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) libcurl4_7.64.0-2ubuntu1.2_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) libcurl4_7.64.0-2ubuntu1.2_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) libcurl3-nss_7.58.0-2ubuntu3.8_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) libcurl3-nss_7.58.0-2ubuntu3.8_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) libcurl3-nss_7.64.0-2ubuntu1.2_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) libcurl3-nss_7.64.0-2ubuntu1.2_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) libcurl3-nss_7.47.0-1ubuntu2.14_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) libcurl3-nss_7.47.0-1ubuntu2.14_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) libcurl3-gnutls_7.58.0-2ubuntu3.8_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) libcurl3-gnutls_7.58.0-2ubuntu3.8_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) libcurl3-gnutls_7.64.0-2ubuntu1.2_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) libcurl3-gnutls_7.64.0-2ubuntu1.2_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) libcurl3-gnutls_7.47.0-1ubuntu2.14_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-4129-1) libcurl3-gnutls_7.47.0-1ubuntu2.14_amd64.debLinux
SUSE-SU-2019:2381-1(SUSE Linux Enterprise Desktop 12-SP4 ) curl-7.60.0-4.9.1.x86_64.rpmLinux
SUSE-SU-2019:2381-1(SUSE Linux Enterprise Desktop 12-SP4 ) curl-debuginfo-7.60.0-4.9.1.x86_64.rpmLinux
SUSE-SU-2019:2381-1(SUSE Linux Enterprise Desktop 12-SP4 ) curl-debugsource-7.60.0-4.9.1.x86_64.rpmLinux
SUSE-SU-2019:2381-1(SUSE Linux Enterprise Desktop 12-SP4 ) libcurl4-7.60.0-4.9.1.x86_64.rpmLinux
SUSE-SU-2019:2381-1(SUSE Linux Enterprise Desktop 12-SP4 ) libcurl4-32bit-7.60.0-4.9.1.x86_64.rpmLinux
SUSE-SU-2019:2381-1(SUSE Linux Enterprise Desktop 12-SP4 ) libcurl4-debuginfo-7.60.0-4.9.1.x86_64.rpmLinux
SUSE-SU-2019:2381-1(SUSE Linux Enterprise Desktop 12-SP4 ) libcurl4-debuginfo-32bit-7.60.0-4.9.1.x86_64.rpmLinux
curl security update(DSA-4633-1) curl_7.52.1-5+deb9u10_i386.debLinux
curl security update(DSA-4633-1) curl_7.52.1-5+deb9u10_amd64.debLinux
curl security update(DSA-4633-1) curl_7.64.0-4+deb10u1_i386.debLinux
curl security update(DSA-4633-1) curl_7.64.0-4+deb10u1_amd64.debLinux
(RHSA-2020:1792) curl security update curl-7.61.1-12.el8.x86_64.rpmLinux
(RHSA-2020:1792) curl security update curl-debugsource-7.61.1-12.el8.i686.rpmLinux
(RHSA-2020:1792) curl security update curl-debugsource-7.61.1-12.el8.x86_64.rpmLinux
(RHSA-2020:1792) curl security update libcurl-7.61.1-12.el8.i686.rpmLinux
(RHSA-2020:1792) curl security update libcurl-7.61.1-12.el8.x86_64.rpmLinux
(RHSA-2020:1792) curl security update libcurl-devel-7.61.1-12.el8.i686.rpmLinux
(RHSA-2020:1792) curl security update libcurl-devel-7.61.1-12.el8.x86_64.rpmLinux
(RHSA-2020:1792) curl security update libcurl-minimal-7.61.1-12.el8.i686.rpmLinux
(RHSA-2020:1792) curl security update libcurl-minimal-7.61.1-12.el8.x86_64.rpmLinux
(RHSA-2020:3916) curl security update curl-7.29.0-59.el7.x86_64.rpmLinux
(RHSA-2020:3916) curl security update libcurl-7.29.0-59.el7.i686.rpmLinux
(RHSA-2020:3916) curl security update libcurl-7.29.0-59.el7.x86_64.rpmLinux
(RHSA-2020:3916) curl security update libcurl-devel-7.29.0-59.el7.i686.rpmLinux
(RHSA-2020:3916) curl security update libcurl-devel-7.29.0-59.el7.x86_64.rpmLinux
Curl update (ELSA-2020-5002) curl-7.29.0-59.0.1.el7_9.1.x86_64.rpmLinux
Libcurl update (ELSA-2020-5002) libcurl-7.29.0-59.0.1.el7_9.1.x86_64.rpmLinux
Libcurl-devel update (ELSA-2020-5002) libcurl-devel-7.29.0-59.0.1.el7_9.1.x86_64.rpmLinux
Libcurl update (ELSA-2020-5002) libcurl-7.29.0-59.0.1.el7_9.1.i686.rpmLinux
Libcurl-devel update (ELSA-2020-5002) libcurl-devel-7.29.0-59.0.1.el7_9.1.i686.rpmLinux
Curl update (ELSA-2020-5561) curl-7.19.7-54.0.2.el6_10.x86_64.rpmLinux
Libcurl update (ELSA-2020-5561) libcurl-7.19.7-54.0.2.el6_10.x86_64.rpmLinux
Libcurl-devel update (ELSA-2020-5561) libcurl-devel-7.19.7-54.0.2.el6_10.x86_64.rpmLinux
Curl update (ELSA-2020-5561) libcurl-7.19.7-54.0.2.el6_10.i686.rpmLinux
Libcurl-devel update (ELSA-2020-5561) libcurl-devel-7.19.7-54.0.2.el6_10.i686.rpmLinux
(CESA-2020:1792) curl security update curl-7.61.1-12.el8.x86_64.rpmLinux
(CESA-2020:1792) curl security update libcurl-7.61.1-12.el8.i686.rpmLinux
(CESA-2020:1792) curl security update libcurl-7.61.1-12.el8.x86_64.rpmLinux
(CESA-2020:1792) curl security update libcurl-devel-7.61.1-12.el8.i686.rpmLinux
(CESA-2020:1792) curl security update libcurl-devel-7.61.1-12.el8.x86_64.rpmLinux
(CESA-2020:1792) curl security update libcurl-minimal-7.61.1-12.el8.i686.rpmLinux
(CESA-2020:1792) curl security update libcurl-minimal-7.61.1-12.el8.x86_64.rpmLinux
Curl update (ELSA-2023-7743) curl-7.29.0-59.0.3.el7_9.2.x86_64.rpmLinux
Libcurl update (ELSA-2023-7743) libcurl-7.29.0-59.0.3.el7_9.2.i686.rpmLinux
Libcurl update (ELSA-2023-7743) libcurl-7.29.0-59.0.3.el7_9.2.x86_64.rpmLinux
Libcurl-devel update (ELSA-2023-7743) libcurl-devel-7.29.0-59.0.3.el7_9.2.i686.rpmLinux
Libcurl-devel update (ELSA-2023-7743) libcurl-devel-7.29.0-59.0.3.el7_9.2.x86_64.rpmLinux
Out-of-bounds Write Vulnerability (CVE-2019-5482)NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234