Apple macOS 11.2

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:o:apple:macos:11.2:*:*:*:*:*:*:*

part: o version: 11.2 update: *

VendorApple (c2b419d0-9f0f-51c1-88dc-2e204a98e1c7)
ProductMacos (3d717c28-5560-5fec-9005-c3126200fe8b)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2021-22925 vulnerable 2026-06-03 14:43:54.345546 Details available
curl supports the `-t` command line option, known as `CURLOPT_TELNETOPTIONS`in libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending `NEW_ENV` variables, libcurlcould be made to pass on uninitialized data from a stack based buffer to theserver. Therefore potentially revealing sensitive internal information to theserver using a clear-text network protocol.This could happen because curl did not call and use sscanf() correctly whenparsing the string provided by the application.
Published: 2021-08-05T00:00:00.000Z
Updated: 2026-04-16T16:36:24.090Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-8284 vulnerable 2026-06-03 14:43:08.597655 Details available
A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed, for example doing port scanning and service banner extractions.
Published: 2020-12-14T19:38:26.000Z
Updated: 2026-04-16T13:59:17.253Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.