CVE-2015-3237

CWE-20 — Improper Input Validation CWE-2018 documents7 sources

Severity

6.4MEDIUM

EPSS

5.1%

top 10.14%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

HP System Management Homepage Haxx Curl Haxx Libcurl +2 more

Timeline

PublishedJun 22

Latest updateMay 14

Description

The smb_request_state function in cURL and libcurl 7.40.0 through 7.42.1 allows remote SMB servers to obtain sensitive information from memory or cause a denial of service (out-of-bounds read and crash) via crafted length and offset values.

CVSS vector

AV:N/AC:L/C:P/I:N/A:PExploitability: 10.0 | Impact: 4.9

Affected Packages6 packages

▶NVDhaxx/libcurl4 versions+3

▶Debiancurl< 7.43.0-1+3

▶NVDhaxx/curl4 versions+3

▶NVDhp/system_management_homepage7.5.3.1

▶NVDoracle/glassfish_server3.0.1, 3.1.2+1

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

GHSA-c5fx-333r-cgw4: The smb_request_state function in cURL and libcurl 7↗2022-05-14

▶

CVEList

CVE-2015-3237: The smb_request_state function in cURL and libcurl 7↗2015-06-22

▶

OSV

CVE-2015-3237: The smb_request_state function in cURL and libcurl 7↗2015-06-22

▶

📋Vendor Advisories

Red Hat

curl: SMB send off unrelated memory contents↗2015-06-17

▶

Debian

CVE-2015-3237: curl - The smb_request_state function in cURL and libcurl 7.40.0 through 7.42.1 allows ...↗2015

▶

💬Community

Bugzilla

CVE-2015-3237 curl: SMB send off unrelated memory contents↗2015-06-19

▶

Bugzilla

CVE-2015-3237 CVE-2015-3236 curl: various flaws [fedora-all]↗2015-06-19

▶