Filter
-Infinity
0

Trending

Last week
Last month
Last year

Software

curl
47

CurlOut-of-bounds Read, Buffer Overflow

critical
9.8
First published (updated )
CVE-2023-52071

Libcurleventfd double close

critical
9.8
First published (updated )
CVE-2025-0665

ubuntu/curlInfoleak

critical
9.1
First published (updated )
CVE-2023-28322

libcurlBuffer Overflow

high
8.8
First published (updated )
CVE-2005-0490

macOSUse After Free

high
7.5
First published (updated )
CVE-2023-28319

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

ubuntu/curlcurl. Multiple issues were addressed by updating curl.

high
7.5
First published (updated )
CVE-2023-28321

CurlBuffer Overflow

high
7.5
First published (updated )
CVE-2005-3185

CurlSQL Injection, CRLF Injection

high
7.5
First published (updated )
CVE-2012-0036

Libcurllib/ssluse.c in cURL and libcurl 7.4 through 7.19.5, when OpenSSL is used, does not properly handle …

high
7.5
First published (updated )
CVE-2009-2417

Libcurlgzip integer overflow

high
7.3
First published (updated )
CVE-2025-0725

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

CurlcURL and libcurl Vulnerability Affecting Cisco Products: October 2023

high
7
First published (updated )
cisco-sa-curl-libcurl-D9ds39cV

CurlCSRF

medium
6.8
First published (updated )
CVE-2009-0037

LibcurlBuffer Overflow

medium
6.8
First published (updated )
CVE-2010-0734

macOSRace Condition

medium
5.9
First published (updated )
CVE-2023-28320

CurlPath Traversal

medium
5.8
First published (updated )
CVE-2010-3842

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

CurlA flaw was found in the way that curl sanitized URLs. The upstream advisory [1] reports: libcur…

medium
4
First published (updated )
REDHAT-BUG-773457

LibcurlBuffer Overflow

medium
4
First published (updated )
REDHAT-BUG-563220

CurlcURL did not properly cut off directory parts from user provided file name to be downloaded on opera…

medium
4
First published (updated )
REDHAT-BUG-642642

CurlIt was found that cURL performed client credentials delegation during the client-to-server GSS secur…

medium
4
First published (updated )
REDHAT-BUG-711454

Curlnetrc and default credential leak

low
3.4
First published (updated )
CVE-2025-0167

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Libcurllibcurl's ASN1 parser code has the `GTime2str()` function, used for parsing an ASN.1 Generalized Tim…

low
1
First published (updated )
REDHAT-BUG-2301888

CurlWhen asked to both use a .netrc file for credentials and to follow HTTP redirects, curl could leak t…

low
1
First published (updated )
REDHAT-BUG-2331191

libcurlAfter testing original <a href="https://access.redhat.com/security/cve/CVE-2016-5420">CVE-2016-5420<…

low
1
First published (updated )
REDHAT-BUG-1373229

[SECURITY ADVISORY] curl: CVE-2024-0853 : OCSP verification bypass with TLS session reuse

First published (updated )
https://seclists.org/oss-sec/2024/q1/73

[SECURITY ADVISORY] curl: CVE-2024-2004: Usage of disabled protocol

First published (updated )
https://seclists.org/oss-sec/2024/q1/253

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

[SECURITY ADVISORY] curl: CVE-2024-2466: TLS certificate check bypass with mbedTLS

First published (updated )
https://seclists.org/oss-sec/2024/q1/256

[SECURITY ADVISORY] curl: CVE-2024-2379: QUIC certificate check bypass with wolfSSL

First published (updated )
https://seclists.org/oss-sec/2024/q1/254

[SECURITY ADVISORY] curl: CVE-2024-2398: HTTP/2 push headers memory-leak

First published (updated )
https://seclists.org/oss-sec/2024/q1/255

[SECURITY ADVISORY] curl: CVE-2024-6197: feing stack buffer in utf8asn1str

First published (updated )
https://seclists.org/oss-sec/2024/q3/107

[SECURITY ADVISORY] curl: CVE-2024-6874: macidn punycode buffer overad

First published (updated )
https://seclists.org/oss-sec/2024/q3/108

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203