Security Advisory

CVE-2014-3620

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-11-18 15:00:00

Last updated 2024-08-06 10:50:17

Assigner redhat

State PUBLISHED

Description

cURL and libcurl before 7.38.0 allow remote attackers to bypass the Same Origin Policy and set cookies for arbitrary sites by setting a cookie for a top-level domain.

← Browse all CVEs View on cve.org ↗