CVE-2020-13614

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2020-13614
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-13614.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2020-13614
Related
Published
2020-05-26T23:15:10Z
Modified
2025-02-14T11:13:46.185340Z
Downstream
Severity
  • 5.9 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

An issue was discovered in ssl.c in Axel before 2.17.8. The TLS implementation lacks hostname verification.

References

Affected packages

Alpine:v3.10 / axel

Package

Name
axel
Purl
pkg:apk/alpine/axel?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.17.3-r1

Affected versions

2.*

2.4-r0
2.4-r1
2.4-r2
2.16.1-r0
2.16.1-r1
2.16.1-r2
2.17.3-r0

Alpine:v3.11 / axel

Package

Name
axel
Purl
pkg:apk/alpine/axel?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.17.6-r1

Affected versions

2.*

2.4-r0
2.4-r1
2.4-r2
2.16.1-r0
2.16.1-r1
2.16.1-r2
2.17.3-r0
2.17.4-r0
2.17.5-r0
2.17.6-r0

Alpine:v3.12 / axel

Package

Name
axel
Purl
pkg:apk/alpine/axel?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.17.8-r0

Affected versions

2.*

2.4-r0
2.4-r1
2.4-r2
2.16.1-r0
2.16.1-r1
2.16.1-r2
2.17.3-r0
2.17.4-r0
2.17.5-r0
2.17.6-r0
2.17.7-r0

Alpine:v3.13 / axel

Package

Name
axel
Purl
pkg:apk/alpine/axel?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.17.8-r0

Affected versions

2.*

2.4-r0
2.4-r1
2.4-r2
2.16.1-r0
2.16.1-r1
2.16.1-r2
2.17.3-r0
2.17.4-r0
2.17.5-r0
2.17.6-r0
2.17.7-r0

Alpine:v3.14 / axel

Package

Name
axel
Purl
pkg:apk/alpine/axel?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.17.8-r0

Affected versions

2.*

2.4-r0
2.4-r1
2.4-r2
2.16.1-r0
2.16.1-r1
2.16.1-r2
2.17.3-r0
2.17.4-r0
2.17.5-r0
2.17.6-r0
2.17.7-r0

Alpine:v3.15 / axel

Package

Name
axel
Purl
pkg:apk/alpine/axel?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.17.8-r0

Affected versions

2.*

2.4-r0
2.4-r1
2.4-r2
2.16.1-r0
2.16.1-r1
2.16.1-r2
2.17.3-r0
2.17.4-r0
2.17.5-r0
2.17.6-r0
2.17.7-r0

Alpine:v3.16 / axel

Package

Name
axel
Purl
pkg:apk/alpine/axel?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.17.8-r0

Affected versions

2.*

2.4-r0
2.4-r1
2.4-r2
2.16.1-r0
2.16.1-r1
2.16.1-r2
2.17.3-r0
2.17.4-r0
2.17.5-r0
2.17.6-r0
2.17.7-r0

Alpine:v3.17 / axel

Package

Name
axel
Purl
pkg:apk/alpine/axel?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.17.8-r0

Affected versions

2.*

2.4-r0
2.4-r1
2.4-r2
2.16.1-r0
2.16.1-r1
2.16.1-r2
2.17.3-r0
2.17.4-r0
2.17.5-r0
2.17.6-r0
2.17.7-r0

Alpine:v3.18 / axel

Package

Name
axel
Purl
pkg:apk/alpine/axel?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.17.8-r0

Affected versions

2.*

2.4-r0
2.4-r1
2.4-r2
2.16.1-r0
2.16.1-r1
2.16.1-r2
2.17.3-r0
2.17.4-r0
2.17.5-r0
2.17.6-r0
2.17.7-r0

Alpine:v3.19 / axel

Package

Name
axel
Purl
pkg:apk/alpine/axel?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.17.8-r0

Affected versions

2.*

2.4-r0
2.4-r1
2.4-r2
2.16.1-r0
2.16.1-r1
2.16.1-r2
2.17.3-r0
2.17.4-r0
2.17.5-r0
2.17.6-r0
2.17.7-r0

Alpine:v3.20 / axel

Package

Name
axel
Purl
pkg:apk/alpine/axel?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.17.8-r0

Affected versions

2.*

2.4-r0
2.4-r1
2.4-r2
2.16.1-r0
2.16.1-r1
2.16.1-r2
2.17.3-r0
2.17.4-r0
2.17.5-r0
2.17.6-r0
2.17.7-r0

Alpine:v3.21 / axel

Package

Name
axel
Purl
pkg:apk/alpine/axel?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.17.8-r0

Affected versions

2.*

2.4-r0
2.4-r1
2.4-r2
2.16.1-r0
2.16.1-r1
2.16.1-r2
2.17.3-r0
2.17.4-r0
2.17.5-r0
2.17.6-r0
2.17.7-r0

Alpine:v3.9 / axel

Package

Name
axel
Purl
pkg:apk/alpine/axel?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.16.1-r3

Affected versions

2.*

2.4-r0
2.4-r1
2.4-r2
2.16.1-r0
2.16.1-r1
2.16.1-r2

Debian:11 / axel

Package

Name
axel
Purl
pkg:deb/debian/axel?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.17.8-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Debian:12 / axel

Package

Name
axel
Purl
pkg:deb/debian/axel?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.17.8-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Debian:13 / axel

Package

Name
axel
Purl
pkg:deb/debian/axel?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.17.8-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Git / github.com/axel-download-accelerator/axel

Affected ranges

Type
GIT
Repo
https://github.com/axel-download-accelerator/axel
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
0b22b5a23fa0e568803f0a625e51eca4b662c4fc

Affected versions

v2.*

v2.10
v2.11
v2.12
v2.13
v2.13.1
v2.14
v2.14.1
v2.15
v2.16
v2.16.1
v2.17
v2.17.1
v2.17.2
v2.17.3
v2.17.4
v2.17.5
v2.17.6
v2.17.7
v2.5
v2.6
v2.7