Filters
Versions
7.32.0
17
7.31.0
16
7.28.0
15
7.28.1
15
7.29.0
15
7.33.0
15
7.34.0
15
7.22.0
14
7.27.0
14
7.30.0
14
7.36.0
14
7.20.0
13
7.21.6
13
7.23.0
13
7.26.0
13
7.35.0
13
7.18.0
12
7.18.2
12
7.19.3
12
7.19.4
12
7.21.0
12
7.21.2
12
7.21.4
12
7.21.5
12
7.21.7
12
7.23.1
12
7.24.0
12
7.25.0
12
7.17.1
11
7.18.1
11
7.19.0
11
7.19.1
11
7.19.2
11
7.19.5
11
7.19.6
11
7.19.7
11
7.20.1
11
7.21.1
11
7.21.3
11
7.37.0
11
7.37.1
11
7.15.0
10
7.15.1
10
7.15.2
10
7.15.3
10
7.15.4
10
7.15.5
10
7.16.0
10
7.16.1
10
7.16.2
10
7.16.3
10
7.16.4
10
7.17.0
10
7.10.6
9
7.12.1
9
7.13.0
9
7.14.0
9
7.14.1
9
7.38.0
9
7.41.0
9
7.10.7
8
7.10.8
8
7.11.0
8
7.11.1
8
7.11.2
8
7.12.0
8
7.12.2
8
7.12.3
8
7.13.1
8
7.13.2
8
7.39
8
7.40.0
8
7.42.0
5
7.50.0
5
7.10.4
4
7.42.1
4
7.9.1
4
7.10
3
7.10.1
3
7.10.2
3
7.10.3
3
7.10.5
3
7.49.0
3
7.50.1
3
7.50.2
3
7.52.0
3
7.53.1
3
7.54.1
3
7.56.1
3
7.7
3
7.7.1
3
7.7.2
3
7.7.3
3
7.8
3
7.8.1
3
7.88.1
3
7.9
3
7.9.2
3
7.9.3
3
7.9.4
3
7.9.5
3
7.9.6
3
7.9.7
3
7.9.8
3
7.1.1
2
7.43.0
2
7.44.0
2
7.45.0
2
7.46.0
2
7.47.0
2
7.47.1
2
7.48.0
2
7.49.1
2
7.50.3
2
7.51.0
2
7.52.1
2
7.53.0
2
7.54.0
2
7.56.0
2
7.75.0
2
6.0
1
6.1
1
6.1-beta
1
6.2
1
6.3
1
6.3.1
1
6.4
1
6.5
1
6.5.1
1
6.5.2
1
7.1
1
7.2
1
7.2.1
1
7.3
1
7.4
1
7.4.1
1
7.4.2
1
7.5
1
7.5.1
1
7.5.2
1
7.55.0
1
7.55.1
1
7.57.0
1
7.6
1
7.6.1
1
7.63.0
1
7.64.1
1
7.69.0
1
7.71.1
1
7.73.0
1
7.78.0
1
7.84.0
1
7.88.0
1
8.1.2
1
8.6.0
1
8.8.0
1
Google Nest Mini FirmwareThe libcurl CURLOPT_SSL_VERIFYPEER option was disabled on a subset of requests made by Nest producti…
5.9
First published (updated )
Haxx Libcurlmacidn punycode buffer overread
4.3
EPSS
0.04%
First published (updated )
Microsoft Windows 11freeing stack buffer in utf8asn1str
8.8
EPSS
0.04%
First published (updated )
ubuntu/curlCurl and libcurl CVE-2023-38545 and CVE-2023-38546 vulnerabilities
3.7
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Windows 10Curl and libcurl CVE-2023-38545 and CVE-2023-38546 vulnerabilities
9.8
EPSS
0.18%
First published (updated )
Haxx Libcurlcurl: fopen race condition: CVE-2023-32001
5.5
First published (updated )
Splunk Universal ForwarderUse After Free, Double Free
7.5
First published (updated )
Splunk Universal ForwardercURL libcurl could allow a local attacker to bypass security restrictions, caused by a SSH connectio…
5.5
First published (updated )
Splunk Universal ForwardercURL libcurl could allow a remote attacker to bypass security restrictions, caused by a GSS delegati…
5.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Splunk Universal ForwardercURL libcurl could allow a remote attacker to bypass security restrictions, caused by a FTP too eage…
5.9
First published (updated )
Fedoraproject FedoraA flaw was found in the way libcurl handled TLS 1.3 session tickets. A malicious HTTPS proxy could p…
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Apple Mac OS Xcurl. This issue was addressed with improved checks.
7.5
First published (updated )
ubuntu/curllibcurl versions from 7.34.0 to before 7.64.0 are vulnerable to a heap out-of-bounds read in the cod…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Redhat Enterprise LinuxBuffer Overflow, Integer Overflow
10
First published (updated )
Haxx LibcurlIn curl and libcurl 7.52.0 to and including 7.53.1, libcurl would attempt to resume a TLS session ev…
7.5
First published (updated )
Canonical Ubuntu LinuxLast updated 24 July 2024
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Debian Debian LinuxThe FTP wildcard function in curl and libcurl before 7.57.0 allows remote attackers to cause a denia…
9.8
First published (updated )
redhat/httpd24-curlInteger Overflow, Buffer Overflow
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fedoraproject FedoraInteger Overflow, Buffer Overflow
9.8
First published (updated )
openSUSE Leapcurl and libcurl before 7.50.2, when built with NSS and the libnsspem.so library is available at run…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/curlcurl and libcurl before 7.50.1 do not check the client certificate when choosing the TLS connection …
7.5
First published (updated )
redhat/curlcurl and libcurl before 7.50.1 do not prevent TLS session resumption when the client certificate has…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Haxx LibcurlcURL and libcurl 7.10.6 through 7.41.0 does not properly re-use NTLM connections, which allows remot…
First published (updated )
Haxx LibcurlcURL and libcurl 7.10.6 through 7.41.0 do not properly re-use authenticated Negotiate connections, w…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Haxx LibcurlThe darwinssl_connect_step1 function in lib/vtls/curl_darwinssl.c in libcurl 7.31.0 through 7.39.0, …
5.8
First published (updated )
Haxx CurlcURL and libcurl before 7.38.0 does not properly handle IP addresses in cookie domain names, which a…
First published (updated )
Haxx CurlcURL and libcurl before 7.38.0 allow remote attackers to bypass the Same Origin Policy and set cooki…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.