CVE-2014-8150

Published: Jan 15, 2015Modified: May 6, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

CRLF injection vulnerability in libcurl 6.0 through 7.x before 7.40.0, when using an HTTP proxy, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in a URL.

Affected (119)

Products: Debian: Debian Linux · Haxx: Libcurl · Canonical: Ubuntu Linux

1 product

1 product

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 7.0

Configuration B

114 vulnerable

Vulnerable Software	Affected Versions
Haxx Libcurl	Version 6.0
Haxx Libcurl	Version 6.1
Haxx Libcurl	Version 6.1 beta
Haxx Libcurl	Version 6.2
Haxx Libcurl	Version 6.3.1
Haxx Libcurl	Version 6.3
Haxx Libcurl	Version 6.4
Haxx Libcurl	Version 6.5.1
Haxx Libcurl	Version 6.5.2
Haxx Libcurl	Version 6.5
Haxx Libcurl	Version 7.1.1
Haxx Libcurl	Version 7.10.1
Haxx Libcurl	Version 7.10.2
Haxx Libcurl	Version 7.10.3
Haxx Libcurl	Version 7.10.4
Haxx Libcurl	Version 7.10.5
Haxx Libcurl	Version 7.10.6
Haxx Libcurl	Version 7.10.7
Haxx Libcurl	Version 7.10.8
Haxx Libcurl	Version 7.10
Haxx Libcurl	Version 7.11.0
Haxx Libcurl	Version 7.11.1
Haxx Libcurl	Version 7.11.2
Haxx Libcurl	Version 7.12.0
Haxx Libcurl	Version 7.12.1
Haxx Libcurl	Version 7.12.2
Haxx Libcurl	Version 7.12.3
Haxx Libcurl	Version 7.13.0
Haxx Libcurl	Version 7.13.1
Haxx Libcurl	Version 7.13.2
Haxx Libcurl	Version 7.14.0
Haxx Libcurl	Version 7.14.1
Haxx Libcurl	Version 7.15.0
Haxx Libcurl	Version 7.15.1
Haxx Libcurl	Version 7.15.2
Haxx Libcurl	Version 7.15.3
Haxx Libcurl	Version 7.15.4
Haxx Libcurl	Version 7.15.5
Haxx Libcurl	Version 7.16.0
Haxx Libcurl	Version 7.16.1
Haxx Libcurl	Version 7.16.2
Haxx Libcurl	Version 7.16.3
Haxx Libcurl	Version 7.16.4
Haxx Libcurl	Version 7.17.0
Haxx Libcurl	Version 7.17.1
Haxx Libcurl	Version 7.18.0
Haxx Libcurl	Version 7.18.1
Haxx Libcurl	Version 7.18.2
Haxx Libcurl	Version 7.19.0
Haxx Libcurl	Version 7.19.1
Haxx Libcurl	Version 7.19.2
Haxx Libcurl	Version 7.19.3
Haxx Libcurl	Version 7.19.4
Haxx Libcurl	Version 7.19.5
Haxx Libcurl	Version 7.19.6
Haxx Libcurl	Version 7.19.7
Haxx Libcurl	Version 7.1
Haxx Libcurl	Version 7.2.1
Haxx Libcurl	Version 7.20.0
Haxx Libcurl	Version 7.20.1
Haxx Libcurl	Version 7.21.0
Haxx Libcurl	Version 7.21.1
Haxx Libcurl	Version 7.21.2
Haxx Libcurl	Version 7.21.3
Haxx Libcurl	Version 7.21.4
Haxx Libcurl	Version 7.21.5
Haxx Libcurl	Version 7.21.6
Haxx Libcurl	Version 7.21.7
Haxx Libcurl	Version 7.22.0
Haxx Libcurl	Version 7.23.0
Haxx Libcurl	Version 7.23.1
Haxx Libcurl	Version 7.24.0
Haxx Libcurl	Version 7.25.0
Haxx Libcurl	Version 7.26.0
Haxx Libcurl	Version 7.27.0
Haxx Libcurl	Version 7.28.0
Haxx Libcurl	Version 7.28.1
Haxx Libcurl	Version 7.29.0
Haxx Libcurl	Version 7.2
Haxx Libcurl	Version 7.30.0
Haxx Libcurl	Version 7.31.0
Haxx Libcurl	Version 7.32.0
Haxx Libcurl	Version 7.33.0
Haxx Libcurl	Version 7.34.0
Haxx Libcurl	Version 7.35.0
Haxx Libcurl	Version 7.36.0
Haxx Libcurl	Version 7.37.0
Haxx Libcurl	Version 7.37.1
Haxx Libcurl	Version 7.38.0
Haxx Libcurl	Version 7.39
Haxx Libcurl	Version 7.3
Haxx Libcurl	Version 7.4.1
Haxx Libcurl	Version 7.4.2
Haxx Libcurl	Version 7.4
Haxx Libcurl	Version 7.5.1
Haxx Libcurl	Version 7.5.2
Haxx Libcurl	Version 7.5
Haxx Libcurl	Version 7.6.1
Haxx Libcurl	Version 7.6
Haxx Libcurl	Version 7.7.1
Haxx Libcurl	Version 7.7.2
Haxx Libcurl	Version 7.7.3
Haxx Libcurl	Version 7.7
Haxx Libcurl	Version 7.8.1
Haxx Libcurl	Version 7.8
Haxx Libcurl	Version 7.9.1
Haxx Libcurl	Version 7.9.2
Haxx Libcurl	Version 7.9.3
Haxx Libcurl	Version 7.9.4
Haxx Libcurl	Version 7.9.5
Haxx Libcurl	Version 7.9.6
Haxx Libcurl	Version 7.9.7
Haxx Libcurl	Version 7.9.8
Haxx Libcurl	Version 7.9