Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-dzzd-afgu-3fcy
Vulnerability ID VCID-dzzd-afgu-3fcy
Aliases CVE-2014-8150
Summary Multiple vulnerabilities have been found in cURL, the worst of which could allow remote attackers to execute arbitrary code.
Status Published
Exploitability 0.5
Weighted Severity 6.2
Risk 3.1
Affected and Fixed Packages Package Details
Weaknesses (2)
CWE-113 Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting')
CWE-444 Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')
System Score Found at
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2014-8150
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2014-8150
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2014-8150
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2014-8150
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2014-8150
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2014-8150
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2014-8150
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2014-8150
cvssv3.1 High https://curl.se/docs/CVE-2014-8150.html
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8150.json
https://api.first.org/data/v1/epss?cve=CVE-2014-8150
https://curl.se/docs/CVE-2014-8150.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8150
1178692 https://bugzilla.redhat.com/show_bug.cgi?id=1178692
GLSA-201701-47 https://security.gentoo.org/glsa/201701-47
RHSA-2015:1254 https://access.redhat.com/errata/RHSA-2015:1254
RHSA-2015:2159 https://access.redhat.com/errata/RHSA-2015:2159
USN-2474-1 https://usn.ubuntu.com/2474-1/
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.79112
EPSS Score 0.0123
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:00:44.527596+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/201701-47 38.0.0