curl / Docs / Vulnerability table / 4.8.1 vulnerabilities

Vulnerabilities in curl 4.8.1

curl version 4.8.1 was released on August 7 1998

It has the following 6 published security problems.

SFlawFirstLast
LCVE-2020-8284: trusting FTP PASV responses4.07.73.0
HCVE-2016-0754: remote filename path traversal in curl tool for Windows4.07.46.0
HCVE-2015-3153: sensitive HTTP server headers also sent to proxies4.07.42.0
MCVE-2014-3613: cookie leak with IP address as domain4.07.37.1
HCVE-2013-1944: cookie domain tailmatch4.77.29.0
HCVE-2003-1605: Proxy Authentication Header Information Leakage4.57.10.6

Further details

CVE data for 4.8.1 provided as JSON.

Changelog for curl 4.8.1

See vulnerability summary for the previous release: 4.8 or the subsequent release: 4.8.2