Rapid7

vulnerability

F5 Networks: K17742627 (CVE-2016-8625): cURL and libcurl vulnerability CVE-2016-8625

Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:P/A:N)
Published
Nov 2, 2016
Added
Apr 15, 2017
Modified
Mar 2, 2020

Description

curl before version 7.51.0 uses outdated IDNA 2003 standard to handle International Domain Names and this may lead users to potentially and unknowingly issue network transfer requests to the wrong host.

Solution

f5-big-ip-upgrade-latest
Title
Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.