Filters

Software

haxx curl
39
haxx libcurl
18

Microsoft Windows 11freeing stack buffer in utf8asn1str

high
8.8
EPSS
0.04%
First published (updated )
CVE-2024-6197

Microsoft Windows 10curl: HTTP headers eat all memory

high
7.5
First published (updated )
CVE-2023-38039

ubuntu/curlcurl. Multiple issues were addressed by updating curl.

high
7.5
First published (updated )
CVE-2023-28321

Apple macOSUse After Free

high
7.5
First published (updated )
CVE-2023-28319

Splunk Universal ForwarderUse After Free, Double Free

high
7.5
First published (updated )
CVE-2023-27537

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Splunk Universal ForwarderPath Traversal

high
8.8
First published (updated )
CVE-2023-27534

Splunk Universal ForwarderInput Validation

high
8.8
First published (updated )
CVE-2023-27533

Splunk Universal ForwardercURL libcurl is vulnerable to a denial of service, caused by a flaw in the decompression chain imple…

high
7.5
First published (updated )
CVE-2023-23916

Splunk Universal ForwarderUsing its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear-text …

high
7.5
First published (updated )
CVE-2023-23915

Splunk Universal Forwardercurl. Multiple issues were addressed by updating curl.

high
7.5
First published (updated )
CVE-2022-43551

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Fedoraproject Fedoracurl. Multiple issues were addressed by updating to curl version 7.86.0.

high
7.5
First published (updated )
CVE-2022-42916

Fedoraproject FedoraDouble Free

high
8.1
First published (updated )
CVE-2022-42915

Splunk Universal ForwarderA use of incorrectly resolved name vulnerability fixed in 7.83.1 might remove the wrong file when `-…

high
8.1
First published (updated )
CVE-2022-27778

Splunk Universal ForwarderSSRF

high
7.5
First published (updated )
CVE-2022-27780

Splunk Universal Forwarderlibcurl would reuse a previously created connection even when a TLS or SSHrelated option had been ch…

high
7.5
First published (updated )
CVE-2022-27782

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Splunk Universal Forwarderlibcurl provides the `CURLOPT_CERTINFO` option to allow applications torequest details to be returne…

high
7.5
First published (updated )
CVE-2022-27781

Splunk Universal ForwarderAn improper authentication vulnerability exists in curl 7.33.0 to and including 7.82.0 which might a…

high
8.1
First published (updated )
CVE-2022-22576

Splunk Universal ForwarderInfoleak

high
7.5
First published (updated )
CVE-2022-27775

Oracle Communications Cloud Native Core Network Repository Functioncurl. Multiple issues were addressed by updating to curl version 7.79.1.

high
7.5
First published (updated )
CVE-2021-22946

Oracle PeopleSoft Enterprise PeopleToolslibcurl-using applications can ask for a specific client certificate to be used in a transfer. This …

high
7.5
First published (updated )
CVE-2021-22926

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

IBM QRadar SIEMInfoleak

high
7.5
First published (updated )
CVE-2021-22898

Splunk Universal ForwarderUse After Free

high
8.1
First published (updated )
CVE-2021-22901

Fedoraproject FedoraInfoleak

high
7.5
First published (updated )
CVE-2021-22876

Apple Mac OS Xcurl. This issue was addressed with improved checks.

high
7.5
First published (updated )
CVE-2020-8286

Apple Mac OS XBuffer Overflow, Input Validation

high
7.5
First published (updated )
CVE-2020-8285

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

IBM Cloud Pak for Security (CP4S)Use After Free

high
7.5
First published (updated )
CVE-2020-8231

Fujitsu M10-1 Firmwarecurl 7.20.0 through 7.70.0 is vulnerable to improper restriction of names for files and other resour…

high
7.8
First published (updated )
CVE-2020-8177

Splunk Universal ForwarderInfoleak

high
7.5
First published (updated )
CVE-2020-8169

Oracle Enterprise Manager Ops CenterCode Injection

high
7.8
First published (updated )
CVE-2019-5443

openSUSE LeapBuffer Overflow

high
7.8
First published (updated )
CVE-2019-5436

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

ubuntu/curllibcurl versions from 7.34.0 to before 7.64.0 are vulnerable to a heap out-of-bounds read in the cod…

high
7.5
First published (updated )
CVE-2019-3823

Canonical Ubuntu LinuxInteger Overflow

high
7.5
First published (updated )
CVE-2018-16890

Haxx Curlcurl 7.x before 7.10.7 sends CONNECT proxy credentials to the remote server.

high
7.5
First published (updated )
CVE-2003-1605

Haxx LibcurlIn curl and libcurl 7.52.0 to and including 7.53.1, libcurl would attempt to resume a TLS session ev…

high
7.5
First published (updated )
CVE-2017-7468

Haxx Curlcurl before version 7.52.1 is vulnerable to an uninitialized random in libcurl's internal function t…

high
8.1
First published (updated )
CVE-2016-9594

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Haxx CurlThe verify_certificate function in lib/vtls/schannel.c in libcurl 7.30.0 through 7.51.0, when built …

high
8.1
First published (updated )
CVE-2016-9952

Canonical Ubuntu LinuxNull Pointer Dereference

high
7.5
First published (updated )
CVE-2018-1000121

Haxx LibcurlBuffer Overflow

high
7.5
First published (updated )
CVE-2017-1000254

Haxx CurlBuffer Overflow

high
8.1
First published (updated )
CVE-2016-9586

redhat/curlInput Validation

high
7.5
First published (updated )
CVE-2016-8625

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

redhat/httpd24-curlInput Validation

high
7.5
First published (updated )
CVE-2016-8624

Haxx CurlUse After Free

high
7.5
First published (updated )
CVE-2016-8623

Haxx CurlThe `curl_getdate` function in curl before version 7.51.0 is vulnerable to an out of bounds read if …

high
7.5
First published (updated )
CVE-2016-8621

Haxx CurlThe base64 encode function in curl before version 7.51.0 is prone to a buffer being under allocated …

high
7
First published (updated )
CVE-2016-8617

Haxx CurlA flaw was found in curl before version 7.51. If cookie state is written into a cookie jar file that…

high
7.5
First published (updated )
CVE-2016-8615

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

openSUSE Leapcurl and libcurl before 7.50.2, when built with NSS and the libnsspem.so library is available at run…

high
7.5
First published (updated )
CVE-2016-7141

Canonical Ubuntu LinuxUse After Free

high
8.1
First published (updated )
CVE-2016-5421

redhat/curlcurl and libcurl before 7.50.1 do not check the client certificate when choosing the TLS connection …

high
7.5
First published (updated )
CVE-2016-5420

redhat/curlcurl and libcurl before 7.50.1 do not prevent TLS session resumption when the client certificate has…

high
7.5
First published (updated )
CVE-2016-5419

Haxx CurlMultiple untrusted search path vulnerabilities in cURL and libcurl before 7.49.1, when built with SS…

high
7.8
First published (updated )
CVE-2016-4802

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203