CVE-2007-3564

N/A Unknown
Published: July 18, 2007 Modified: April 23, 2026
View on NVD

Description

libcurl 7.14.0 through 7.16.3, when built with GnuTLS support, does not check SSL/TLS certificate expiration or activation dates, which allows remote attackers to bypass certain access restrictions.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://secunia.com/advisories/26104
Source: security@ubuntu.com
Patch Vendor Advisory
http://secunia.com/advisories/26108
Source: security@ubuntu.com
Patch Vendor Advisory
http://secunia.com/advisories/26128
Source: security@ubuntu.com
http://secunia.com/advisories/26231
Source: security@ubuntu.com
http://www.curl.haxx.se/docs/adv_20070710.html
Source: security@ubuntu.com
Patch Vendor Advisory
http://www.debian.org/security/2007/dsa-1333
Source: security@ubuntu.com
http://www.securityfocus.com/bid/24938
Source: security@ubuntu.com
http://www.trustix.org/errata/2007/0023/
Source: security@ubuntu.com
http://www.ubuntu.com/usn/usn-484-1
Source: security@ubuntu.com
Patch
http://www.vupen.com/english/advisories/2007/2551
Source: security@ubuntu.com
https://exchange.xforce.ibmcloud.com/vulnerabilities/35479
Source: security@ubuntu.com
http://secunia.com/advisories/26104
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Vendor Advisory
http://secunia.com/advisories/26108
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Vendor Advisory
http://secunia.com/advisories/26128
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/26231
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.curl.haxx.se/docs/adv_20070710.html
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Vendor Advisory
http://www.debian.org/security/2007/dsa-1333
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/24938
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.trustix.org/errata/2007/0023/
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.ubuntu.com/usn/usn-484-1
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
http://www.vupen.com/english/advisories/2007/2551
Source: af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/35479
Source: af854a3a-2127-422b-91ae-364da2661108

22 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
0.6%
71th percentile
Exploitation Status
Not in CISA KEV

Affected Vendors

libcurl