curl / Docs / Vulnerability table / 4.5 vulnerabilities

Vulnerabilities in curl 4.5

curl version 4.5 was released on May 30 1998

It has the following 5 published security problems.

SFlawFirstLast
LCVE-2020-8284: trusting FTP PASV responses4.07.73.0
HCVE-2016-0754: remote filename path traversal in curl tool for Windows4.07.46.0
HCVE-2015-3153: sensitive HTTP server headers also sent to proxies4.07.42.0
MCVE-2014-3613: cookie leak with IP address as domain4.07.37.1
HCVE-2003-1605: Proxy Authentication Header Information Leakage4.57.10.6

Further details

CVE data for 4.5 provided as JSON.

Changelog for curl 4.5

See vulnerability summary for the previous release: 4.4 or the subsequent release: 4.5.1