CVSS Base Vector:
The remote host is missing an update for the 'curl'
Linux Distribution Package(s) announced via the CESA-2019:1880 advisory.
Checks if a vulnerable Linux Distribution Package version is present on the target host.
The curl Linux Distribution Packages provide the libcurl library and the curl utility for
downloading files from servers using various protocols, including HTTP,
FTP, and LDAP.
* curl: NTLM password overflow via integer overflow (CVE-2018-14618)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
* baseurl with file:// hangs and then timeout in yum repo (BZ#1709474)
* curl crashes on http links with rate-limit (BZ#1711914)
'curl' Linux Distribution Package(s) on CentOS 7.
Please install the updated Linux Distribution Package(s).
NIST (National Institute of Standards and Technology) NVD (National Vulnerability Database)
Linux Distribution Package