CVE-2019-5481

Published Sep 16, 2019

Last updated 7 days ago

CVSS critical 9.8

Overview

Description: Double-free vulnerability in the FTP-kerberos code in cURL 7.52.0 to 7.65.3.
Source: support@hackerone.com
NVD status: Modified
Products: curl, fedora, cloud_backup, steelstore, solidfire_baseboard_management_controller_firmware, communications_operations_monitor, communications_session_border_controller, enterprise_manager_ops_center, mysql_server, oss_support_tools, debian_linux, leap

Risk scores

CVSS 3.1

Type: Primary
Base score: 9.8
Impact score: 5.9
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: CRITICAL

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

support@hackerone.com: CWE-415
nvd@nist.gov: CWE-415

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:haxx:curl:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "192AE1D3-9CFB-48C0-9120-D9F6A66CDFBD",
            "versionEndIncluding": "7.65.3",
            "versionStartIncluding": "7.52.0",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*",
            "matchCriteriaId": "D100F7CE-FC64-4CC6-852A-6136D72DA419",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*",
            "matchCriteriaId": "97A4B8DF-58DA-4AB6-A1F9-331B36409BA3",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*",
            "matchCriteriaId": "80F0FA5D-8D3B-4C0E-81E2-87998286AF33",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "5C2089EE-5D7F-47EC-8EA5-0F69790564C4",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:netapp:steelstore:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "0DF5449D-22D2-48B4-8F50-57B43DCB15B9",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netapp:solidfire_baseboard_management_controller_firmware:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "FB9B8171-F6CA-427D-81E0-6536D3BBFA8D",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netapp:solidfire_baseboard_management_controller:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "090AA6F4-4404-4E26-82AB-C3A22636F276",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:oracle:communications_operations_monitor:3.4:*:*:*:*:*:*:*",
            "matchCriteriaId": "D52F557F-D0A0-43D3-85F1-F10B6EBFAEDF",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_operations_monitor:4.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "E3517A27-E6EE-497C-9996-F78171BBE90F",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_operations_monitor:4.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "EF30C76E-7E58-4D76-89A8-53405685DA86",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_operations_monitor:4.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "F545DFC9-F331-4E1D-BACB-3D26873E5858",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_operations_monitor:4.3:*:*:*:*:*:*:*",
            "matchCriteriaId": "CBE1A019-7BB6-4226-8AC4-9D6927ADAEFA",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_session_border_controller:8.3:*:*:*:*:*:*:*",
            "matchCriteriaId": "C05190B9-237F-4E2E-91EA-DB1B738864AD",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_session_border_controller:8.4:*:*:*:*:*:*:*",
            "matchCriteriaId": "9C416FD3-2E2F-4BBC-BD5F-F896825883F4",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:enterprise_manager_ops_center:12.3.3:*:*:*:*:*:*:*",
            "matchCriteriaId": "AB654DFA-FEF9-4D00-ADB0-F3F2B6ACF13E",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "37209C6F-EF99-4D21-9608-B3A06D283D24",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "3E10FD63-CCE7-4D96-BC36-44FC0EA29ABB",
            "versionEndIncluding": "5.7.28",
            "versionStartIncluding": "5.7.0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "9CCFEDAE-B9B9-4B59-8DB4-FC0A0704B8D4",
            "versionEndIncluding": "8.0.18",
            "versionStartIncluding": "8.0.0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:oss_support_tools:20.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "8252A7F5-2FB5-4E73-864D-D11F21F5EC56",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "F1E78106-58E6-4D59-990F-75DA575BFAD9",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "B620311B-34A3-48A6-82DF-6F078D7A4493",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

Related CVEs

References