Filter
-Infinity
0

Trending

Last week
Last month
Last year

[SECURITY ADVISORY] curl: CVE-2025-0725: gzip integer overflow

First published (updated )
https://seclists.org/oss-sec/2025/q1/108

[SECURITY ADVISORY] curl: CVE-2025-0665: eventfd double close

First published (updated )
https://seclists.org/oss-sec/2025/q1/103

Curl SSH Insufficient Host Identity Verification

First published (updated )
https://seclists.org/oss-sec/2025/q1/102

Curlnetrc and default credential leak

low
3.4
First published (updated )
CVE-2025-0167

[SECURITY ADVISORY] curl: CVE-2025-0725: gzip integer overflow

First published (updated )
https://seclists.org/oss-sec/2025/q1/101

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

[SECURITY ADVISORY] curl: CVE-2025-0665: eventfd double close

First published (updated )
https://seclists.org/oss-sec/2025/q1/100

[SECURITY ADVISORY] curl: CVE-2025-0167: netrc and default cdential leak

First published (updated )
https://seclists.org/oss-sec/2025/q1/99

The RegisterOracle emits 603 patches, names one it wants you to worry about soon

First published (updated )
News
The Register

[SECURITY ADVISORY] curl: CVE-2024-11053: netrc and dict cdential leak

First published (updated )
https://seclists.org/oss-sec/2024/q4/150

CurlWhen asked to both use a .netrc file for credentials and to follow HTTP redirects, curl could leak t…

low
1
First published (updated )
REDHAT-BUG-2331191

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

debian/curlHSTS subdomain overwrites parent cache entry

medium
6.5
EPSS
0.05%
First published (updated )
CVE-2024-9681

[SECURITY ADVISTORY] curl: CVE-2024-9681 HSTS subdomain overwrites pant cache entry

First published (updated )
https://seclists.org/oss-sec/2024/q4/57

[SECURITY ADVISORY] curl: CVE-2024-8096: OCSP stapling bypass with GnuTLS

First published (updated )
https://seclists.org/oss-sec/2024/q3/257

[SECURITY ADVISORY] curl: CVE-2024-7264 ASN.1 date parser overad

First published (updated )
https://seclists.org/oss-sec/2024/q3/126

[SECURITY ADVISORY] curl: CVE-2024-6197: feing stack buffer in utf8asn1str

First published (updated )
https://seclists.org/oss-sec/2024/q3/111

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

[SECURITY ADVISORY] curl: CVE-2024-6874: macidn punycode buffer overad

First published (updated )
https://seclists.org/oss-sec/2024/q3/108

[SECURITY ADVISORY] curl: CVE-2024-6197: feing stack buffer in utf8asn1str

First published (updated )
https://seclists.org/oss-sec/2024/q3/107

[SECURITY ADVISORY] curl: CVE-2024-2466: TLS certificate check bypass with mbedTLS

First published (updated )
https://seclists.org/oss-sec/2024/q1/256

[SECURITY ADVISORY] curl: CVE-2024-2398: HTTP/2 push headers memory-leak

First published (updated )
https://seclists.org/oss-sec/2024/q1/255

[SECURITY ADVISORY] curl: CVE-2024-2379: QUIC certificate check bypass with wolfSSL

First published (updated )
https://seclists.org/oss-sec/2024/q1/254

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

[SECURITY ADVISORY] curl: CVE-2024-2004: Usage of disabled protocol

First published (updated )
https://seclists.org/oss-sec/2024/q1/253

CurlOCSP verification bypass with TLS session reuse

medium
5.9
First published (updated )
CVE-2024-0853

[SECURITY ADVISORY] curl: CVE-2024-0853 : OCSP verification bypass with TLS session reuse

First published (updated )
https://seclists.org/oss-sec/2024/q1/73

CurlOut-of-bounds Read, Buffer Overflow

critical
9.8
First published (updated )
CVE-2023-52071

[SECURITY ADVISORY] curl: HSTS long file name clears contents

First published (updated )
https://seclists.org/oss-sec/2023/q4/262

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

[SECURITY ADVISORY] curl: cookie mixed case PSL bypass

First published (updated )
https://seclists.org/oss-sec/2023/q4/261

debian/curlLast updated 24 July 2024

medium
5.3
First published (updated )
CVE-2023-46219

F5 BIG-IP and BIG-IQ Centralized ManagementLast updated 24 July 2024

medium
6.5
First published (updated )
CVE-2023-46218

CurlcURL and libcurl Vulnerability Affecting Cisco Products: October 2023

high
7
First published (updated )
cisco-sa-curl-libcurl-D9ds39cV

Nasty bug discovered in widely used Linux utility curl, and patches already rolled out

First published (updated )
News
News

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203