Guest

Preview Tool

Cisco Bug: CSCvt35416 - CIAM: Corona shows multiple vulnerabilities for curl 7.42.1 in Vertica

Last Modified

Jun 18, 2020

Products (1)

  • Cisco Stealthwatch Enterprise

Known Affected Releases

v7.0.0 v7.0.2 v7.0.3 v7.1.0 v7.1.1 v7.1.2 v7.1.3 v7.2.0

Description (partial)

Symptom:
Cisco Stealthwatch Endpoint Concentrator, Stealthwatch Flow Collector NetFlow, Stealthwatch Flow Collector sFlow, Stealthwatch Flow Sensor, Stealthwatch Management Console (SMC) and Stealthwatch UDP Director
includes a version of curl that is affected by the vulnerabilities identified by the following Common Vulnerability and Exposures (CVE) IDs:

CVE-2015-3236, CVE-2015-3237, CVE-2016-0754, CVE-2016-0755, CVE-2016-3739, CVE-2016-4606, CVE-2016-4802, CVE-2016-8615, CVE-2016-8616, CVE-2016-8617, CVE-2016-8618, CVE-2016-8619, CVE-2016-8620, CVE-2016-8621, CVE-2016-8623, CVE-2016-8624, CVE-2016-8625, CVE-2016-9586, CVE-2016-9594, CVE-2016-9952, CVE-2016-9953, CVE-2017-1000101, CVE-2017-2629, CVE-2017-8816, CVE-2017-8817, CVE-2017-9502, CVE-2018-1000007, CVE-2018-1000120, CVE-2018-1000121, CVE-2018-1000122, CVE-2018-1000301, CVE-2018-16839, CVE-2018-16842, CVE-2019-15601, CVE-2019-5436, CVE-2019-5443, CVE-2019-5482

This bug was opened to address the potential impact on this product.

Conditions:
Device with default configuration.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.