Filters
Software
Google Nest Mini FirmwareThe libcurl CURLOPT_SSL_VERIFYPEER option was disabled on a subset of requests made by Nest producti…
5.9
First published (updated )
Haxx Libcurlmacidn punycode buffer overread
4.3
EPSS
0.04%
First published (updated )
Microsoft Windows 11freeing stack buffer in utf8asn1str
8.8
EPSS
0.04%
First published (updated )
CVE-2024-0853OCSP verification bypass with TLS session reuse
5.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ubuntu/curlCurl and libcurl CVE-2023-38545 and CVE-2023-38546 vulnerabilities
3.7
First published (updated )
Microsoft Windows 10Curl and libcurl CVE-2023-38545 and CVE-2023-38546 vulnerabilities
9.8
EPSS
0.18%
First published (updated )
Microsoft Windows 10curl: HTTP headers eat all memory
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Haxx Libcurlcurl: fopen race condition: CVE-2023-32001
5.5
First published (updated )
ubuntu/curlcurl. Multiple issues were addressed by updating curl.
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Splunk Universal ForwarderUse After Free, Double Free
7.5
First published (updated )
Splunk Universal ForwardercURL libcurl could allow a local attacker to bypass security restrictions, caused by a SSH connectio…
5.5
First published (updated )
Splunk Universal ForwardercURL libcurl could allow a remote attacker to bypass security restrictions, caused by a GSS delegati…
5.9
First published (updated )
Splunk Universal ForwardercURL libcurl could allow a remote attacker to bypass security restrictions, caused by a FTP too eage…
5.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Splunk Universal ForwardercURL libcurl is vulnerable to a denial of service, caused by a flaw in the decompression chain imple…
7.5
First published (updated )
Splunk Universal ForwarderUsing its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear-text …
7.5
First published (updated )
Splunk Universal ForwarderUsing its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear-text …
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Splunk Universal Forwardercurl. Multiple issues were addressed by updating curl.
7.5
First published (updated )
Splunk Universal Forwardercurl. Multiple issues were addressed by updating to curl version 7.86.0.
6.5
First published (updated )
Fedoraproject Fedoracurl. Multiple issues were addressed by updating to curl version 7.86.0.
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Splunk Universal Forwardercurl. Multiple issues were addressed by updating to curl version 7.84.0.
4.3
First published (updated )
redhat/curlcurl. Multiple issues were addressed by updating to curl version 7.84.0.
5.9
First published (updated )
Splunk Universal Forwardercurl. Multiple issues were addressed by updating to curl version 7.84.0.
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/curlcurl. Multiple issues were addressed by updating to curl version 7.84.0.
6.5
First published (updated )
Splunk Universal ForwarderA use of incorrectly resolved name vulnerability fixed in 7.83.1 might remove the wrong file when `-…
8.1
First published (updated )
Splunk Universal ForwarderUsing its HSTS support, curl can be instructed to use HTTPS directly insteadof using an insecure cle…
4.3
First published (updated )
Splunk Universal Forwarderlibcurl wrongly allows cookies to be set for Top Level Domains (TLDs) if thehost name is provided wi…
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Splunk Universal Forwarderlibcurl would reuse a previously created connection even when a TLS or SSHrelated option had been ch…
7.5
First published (updated )
Splunk Universal Forwarderlibcurl provides the `CURLOPT_CERTINFO` option to allow applications torequest details to be returne…
7.5
First published (updated )
Splunk Universal ForwarderAn improper authentication vulnerability exists in curl 7.33.0 to and including 7.82.0 which might a…
8.1
First published (updated )
Splunk Universal ForwarderAn insufficiently protected credentials vulnerability exists in curl 4.9 to and include curl 7.82.0 …
5.7
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Splunk Universal ForwarderA insufficiently protected credentials vulnerability in fixed in curl 7.83.0 might leak authenticati…
6.5
First published (updated )
Oracle Communications Cloud Native Core Network Repository Functioncurl. Multiple issues were addressed by updating to curl version 7.79.1.
6.1
First published (updated )
Oracle Communications Cloud Native Core Network Repository Functioncurl. Multiple issues were addressed by updating to curl version 7.79.1.
7.5
First published (updated )
Oracle PeopleSoft Enterprise PeopleToolslibcurl-using applications can ask for a specific client certificate to be used in a transfer. This …
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.