CVE-2020-8284 : A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlie

A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed, for example doing port scanning and service banner extractions.

Published 2020-12-14 20:15:14

Updated 2024-04-08 22:50:55

Source HackerOne

View at NVD, CVE.org

Vulnerability category: Information leak

Products affected by CVE-2020-8284

Debian » Debian Linux » Version: 9.0
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Matching versions
Debian » Debian Linux » Version: 10.0
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
Matching versions
Apple » Mac Os X
Versions from including (>=) 10.14.0 and before (<) 10.14.6
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
Matching versions
Apple » Mac Os X
Versions from including (>=) 10.15 and before (<) 10.15.7
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.14.6 Update Security Update 2019-001
cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2019-001:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.14.6 Update Security Update 2019-002
cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2019-002:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.14.6 Update Security Update 2019-006
cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2019-006:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.14.6 Update Security Update 2019-007
cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2019-007:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.14.6 Update Security Update 2020-001
cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2020-001:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.14.6 Update Security Update 2020-002
cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2020-002:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.14.6 Update Security Update 2020-003
cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2020-003:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.14.6 Update Security Update 2020-004
cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2020-004:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.14.6 Update Security Update 2020-005
cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2020-005:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.14.6 Update Security Update 2020-006
cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2020-006:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.14.6 Update Security Update 2020-007
cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2020-007:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.14.6 Update Supplemental Update
cpe:2.3:o:apple:mac_os_x:10.14.6:supplemental_update:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.14.6 Update Supplemental Update 2
cpe:2.3:o:apple:mac_os_x:10.14.6:supplemental_update_2:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.15.7
cpe:2.3:o:apple:mac_os_x:10.15.7:-:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.15.7 Update Security Update 2020-001
cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-001:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.15.7 Update Supplemental Update
cpe:2.3:o:apple:mac_os_x:10.15.7:supplemental_update:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.14.6 Update Security Update 2019-004
cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2019-004:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.14.6 Update Security Update 2019-005
cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2019-005:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.15.7 Update Security Update 2020
cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.15.7 Update Security Update 2020-005
cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-005:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.15.7 Update Security Update 2020-007
cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-007:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.14.6 Update Security Update 2021-001
cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2021-001:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.14.6 Update Security Update 2021-002
cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2021-002:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.15.7 Update Security Update 2021-001
cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-001:*:*:*:*:*:*
Matching versions
Apple » Macos » Version: 11.0.1
cpe:2.3:o:apple:macos:11.0.1:*:*:*:*:*:*:*
Matching versions
Apple » Macos » Version: 11.1
cpe:2.3:o:apple:macos:11.1:*:*:*:*:*:*:*
Matching versions
Apple » Macos » Version: 11.2
cpe:2.3:o:apple:macos:11.2:*:*:*:*:*:*:*
Matching versions
Oracle » Peoplesoft Enterprise Peopletools » Version: 8.58
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*
Matching versions
Oracle » Communications Billing And Revenue Management » Version: 12.0.0.3.0
cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.3.0:*:*:*:*:*:*:*
Matching versions
Oracle » Communications Cloud Native Core Policy » Version: 1.14.0
cpe:2.3:a:oracle:communications_cloud_native_core_policy:1.14.0:*:*:*:*:*:*:*
Matching versions
Oracle » Essbase » Version: 21.2
cpe:2.3:a:oracle:essbase:21.2:*:*:*:*:*:*:*
Matching versions
Siemens » Sinec Infrastructure Network Services
Versions before (<) 1.0.1.1
cpe:2.3:a:siemens:sinec_infrastructure_network_services:*:*:*:*:*:*:*:*
Matching versions
Fujitsu » M10-1 Firmware
Versions before (<) xcp3110
cpe:2.3:o:fujitsu:m10-1_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Fujitsu » M10-1 » Version: N/A
Fujitsu » M10-1 Firmware
Versions before (<) xcp2410
cpe:2.3:o:fujitsu:m10-1_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Fujitsu » M10-1 » Version: N/A
Fujitsu » M10-4 Firmware
Versions before (<) xcp3110
cpe:2.3:o:fujitsu:m10-4_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Fujitsu » M10-4 » Version: N/A
Fujitsu » M10-4 Firmware
Versions before (<) xcp2410
cpe:2.3:o:fujitsu:m10-4_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Fujitsu » M10-4 » Version: N/A
Fujitsu » M10-4s Firmware
Versions before (<) xcp2410
cpe:2.3:o:fujitsu:m10-4s_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Fujitsu » M10-4s » Version: N/A
Fujitsu » M10-4s Firmware
Versions before (<) xcp3110
cpe:2.3:o:fujitsu:m10-4s_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Fujitsu » M10-4s » Version: N/A
Fujitsu » M12-1 Firmware
Versions before (<) xcp2410
cpe:2.3:o:fujitsu:m12-1_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Fujitsu » M12-1 » Version: N/A
Fujitsu » M12-1 Firmware
Versions before (<) xcp3110
cpe:2.3:o:fujitsu:m12-1_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Fujitsu » M12-1 » Version: N/A
Fujitsu » M12-2 Firmware
Versions before (<) xcp3110
cpe:2.3:o:fujitsu:m12-2_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Fujitsu » M12-2 » Version: N/A
Fujitsu » M12-2 Firmware
Versions before (<) xcp2410
cpe:2.3:o:fujitsu:m12-2_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Fujitsu » M12-2 » Version: N/A
Fujitsu » M12-2s Firmware
Versions before (<) xcp2410
cpe:2.3:o:fujitsu:m12-2s_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Fujitsu » M12-2s » Version: N/A
Fujitsu » M12-2s Firmware
Versions before (<) xcp3110
cpe:2.3:o:fujitsu:m12-2s_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Fujitsu » M12-2s » Version: N/A
Fedoraproject » Fedora » Version: 32
cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
Matching versions
Fedoraproject » Fedora » Version: 33
cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
Matching versions
Netapp » Clustered Data Ontap » Version: N/A
cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*
Matching versions
Netapp » Hci Management Node » Version: N/A
cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*
Matching versions
Netapp » Solidfire » Version: N/A
cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*
Matching versions
Netapp » Hci Storage Node » Version: N/A
cpe:2.3:h:netapp:hci_storage_node:-:*:*:*:*:*:*:*
Matching versions
Netapp » Hci Bootstrap Os » Version: N/A
cpe:2.3:o:netapp:hci_bootstrap_os:-:*:*:*:*:*:*:*
Matching versions
When used together with: Netapp » Hci Compute Node » Version: N/A
Splunk » Universal Forwarder
Versions from including (>=) 9.0.0 and before (<) 9.0.6
cpe:2.3:a:splunk:universal_forwarder:*:*:*:*:*:*:*:*
Matching versions
Splunk » Universal Forwarder
Versions from including (>=) 8.2.0 and before (<) 8.2.12
cpe:2.3:a:splunk:universal_forwarder:*:*:*:*:*:*:*:*
Matching versions
Splunk » Universal Forwarder » Version: 9.1.0
cpe:2.3:a:splunk:universal_forwarder:9.1.0:*:*:*:*:*:*:*
Matching versions
Haxx » Curl
Versions up to, including, (<=) 7.73.0
cpe:2.3:a:haxx:curl:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2020-8284

EPSS FAQ

0.07%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 21 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2020-8284

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:P/I:N/A:N	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None
3.7	LOW	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N	2.2	1.4	NIST
Attack Vector: Network Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: Low Integrity: None Availability: None

CWE ids for CVE-2020-8284

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

Assigned by: support@hackerone.com (Secondary)

References for CVE-2020-8284

https://www.debian.org/security/2021/dsa-4881

Debian -- Security Information -- DSA-4881-1 curl
Third Party Advisory

CVEs referencing this url
https://www.oracle.com/security-alerts/cpuapr2022.html

Oracle Critical Patch Update Advisory - April 2022
Patch;Third Party Advisory

CVEs referencing this url
https://lists.debian.org/debian-lts-announce/2020/12/msg00029.html

[SECURITY] [DLA 2500-1] curl security update
Mailing List;Third Party Advisory

CVEs referencing this url
https://www.oracle.com//security-alerts/cpujul2021.html

Oracle Critical Patch Update Advisory - July 2021
Patch;Third Party Advisory

CVEs referencing this url
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NZUVSQHN2ESHMJXNQ2Z7T2EELBB5HJXG/

Third Party Advisory

CVEs referencing this url
https://www.oracle.com/security-alerts/cpujan2022.html

Oracle Critical Patch Update Advisory - January 2022
Patch;Third Party Advisory

CVEs referencing this url
https://support.apple.com/kb/HT212326

About the security content of Security Update 2021-002 Catalina - Apple Support
Third Party Advisory

CVEs referencing this url
https://support.apple.com/kb/HT212327

About the security content of Security Update 2021-003 Mojave - Apple Support
Third Party Advisory

CVEs referencing this url
https://www.oracle.com/security-alerts/cpuApr2021.html

Oracle Critical Patch Update Advisory - April 2021
Patch;Third Party Advisory

CVEs referencing this url
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DAEHE2S2QLO4AO4MEEYL75NB7SAH5PSL/

[SECURITY] Fedora 32 Update: curl-7.69.1-7.fc32 - package-announce - Fedora Mailing-Lists
Third Party Advisory

CVEs referencing this url
https://curl.se/docs/CVE-2020-8284.html

curl - trusting FTP PASV responses - CVE-2020-8284
Vendor Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NZUVSQHN2ESHMJXNQ2Z7T2EELBB5HJXG/

[SECURITY] Fedora 33 Update: curl-7.71.1-8.fc33 - package-announce - Fedora Mailing-Lists
Mailing List;Third Party Advisory

CVEs referencing this url
https://hackerone.com/reports/1040166

Sign in
Permissions Required
https://security.netapp.com/advisory/ntap-20210122-0007/

December 2020 cURL/libcURL Vulnerabilities in NetApp Products | NetApp Product Security
Third Party Advisory

CVEs referencing this url
https://security.gentoo.org/glsa/202012-14

cURL: Multiple vulnerabilities (GLSA 202012-14) — Gentoo security
Third Party Advisory

CVEs referencing this url
https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf

Patch;Third Party Advisory

CVEs referencing this url
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DAEHE2S2QLO4AO4MEEYL75NB7SAH5PSL/

[SECURITY] Fedora 32 Update: curl-7.69.1-7.fc32 - package-announce - Fedora Mailing-Lists
Mailing List;Third Party Advisory

CVEs referencing this url
https://support.apple.com/kb/HT212325

About the security content of macOS Big Sur 11.3 - Apple Support
Third Party Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2020-8284

Products affected by CVE-2020-8284

Exploit prediction scoring system (EPSS) score for CVE-2020-8284

CVSS scores for CVE-2020-8284

CWE ids for CVE-2020-8284

References for CVE-2020-8284