Filter
AND
AND

Versions

7.32.0
15
7.31.0
14
7.22.0
13
7.28.0
13
7.28.1
13
7.29.0
13
7.33.0
13
7.21.6
12
7.23.0
12
7.27.0
12
7.30.0
12
7.34.0
12
7.18.0
11
7.18.2
11
7.19.3
11
7.20.0
11
7.21.2
11
7.21.4
11
7.21.5
11
7.21.7
11
7.23.1
11
7.24.0
11
7.25.0
11
7.26.0
11
7.35.0
11
7.17.1
10
7.18.1
10
7.19.0
10
7.19.1
10
7.19.2
10
7.19.4
10
7.19.5
10
7.19.6
10
7.19.7
10
7.20.1
10
7.21.0
10
7.21.1
10
7.21.3
10
7.15.0
9
7.15.1
9
7.15.2
9
7.15.3
9
7.15.4
9
7.15.5
9
7.16.0
9
7.16.1
9
7.16.2
9
7.16.3
9
7.16.4
9
7.17.0
9
7.36.0
9
7.10.6
8
7.13.0
8
7.14.0
8
7.14.1
8
7.37.0
8
7.37.1
8
7.10.7
7
7.10.8
7
7.11.0
7
7.11.1
7
7.11.2
7
7.12.0
7
7.12.1
7
7.12.2
7
7.12.3
7
7.13.1
7
7.13.2
7
7.38.0
6
7.39
5
7.40.0
5
7.41.0
5
7.42.0
4
7.10.4
3
7.42.1
3
7.10
2
7.10.1
2
7.10.2
2
7.10.3
2
7.10.5
2
7.54.1
2
7.7
2
7.7.1
2
7.7.2
2
7.7.3
2
7.8
2
7.8.1
2
7.88.1
2
7.9
2
7.9.1
2
7.9.2
2
7.9.3
2
7.9.4
2
7.9.5
2
7.9.6
2
7.9.7
2
7.9.8
2
6.0
1
6.1
1
6.1-beta
1
6.2
1
6.3
1
6.3.1
1
6.4
1
6.5
1
6.5.1
1
6.5.2
1
7.1
1
7.1.1
1
7.2
1
7.2.1
1
7.3
1
7.4
1
7.4.1
1
7.4.2
1
7.43.0
1
7.44.0
1
7.45.0
1
7.46.0
1
7.47.0
1
7.47.1
1
7.48.0
1
7.49.0
1
7.49.1
1
7.5
1
7.5.1
1
7.5.2
1
7.50.0
1
7.50.1
1
7.50.2
1
7.50.3
1
7.51.0
1
7.52.0
1
7.52.1
1
7.53.0
1
7.53.1
1
7.54.0
1
7.6
1
7.6.1
1
7.63.0
1
7.75.0
1
7.84.0
1
8.1.2
1
8.8.0
1

IBM Cognos AnalyticsASN.1 date parser overread

medium
6.5
EPSS
0.06%
First published (updated )
CVE-2024-7264

Fedoraproject FedoraA flaw was found in the way libcurl handled TLS 1.3 session tickets. A malicious HTTPS proxy could p…

medium
4.3
First published (updated )
CVE-2021-22890

Haxx Libcurlmacidn punycode buffer overread

medium
4.3
EPSS
0.04%
First published (updated )
CVE-2024-6874

Google Nest Mini FirmwareThe libcurl CURLOPT_SSL_VERIFYPEER option was disabled on a subset of requests made by Nest producti…

medium
5.9
First published (updated )
CVE-2024-32928

Canonical Ubuntu LinuxThe Curl_input_negotiate function in http_negotiate.c in libcurl 7.10.6 through 7.21.6, as used in c…

medium
4.3
First published (updated )
CVE-2011-2192

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Haxx LibcurlInput Validation

medium
4
First published (updated )
CVE-2013-6422

Haxx CurlcURL and libcurl 7.18.0 through 7.32.0, when built with OpenSSL, disables the certificate CN and SAN…

medium
4.3
First published (updated )
CVE-2013-4545

Haxx CurlBuffer Overflow

medium
6.8
First published (updated )
CVE-2013-2174

Haxx CurlInfoleak

medium
5
First published (updated )
CVE-2013-1944

Haxx LibcurlThe darwinssl_connect_step1 function in lib/vtls/curl_darwinssl.c in libcurl 7.31.0 through 7.39.0, …

medium
5.8
First published (updated )
CVE-2014-8151

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Haxx LibcurlCRLF Injection

medium
4.3
First published (updated )
CVE-2014-8150

Haxx LibcurlInfoleak

medium
4.3
First published (updated )
CVE-2014-3707

Haxx CurlcURL and libcurl before 7.38.0 does not properly handle IP addresses in cookie domain names, which a…

medium
5
First published (updated )
CVE-2014-3613

Haxx CurlcURL and libcurl before 7.38.0 allow remote attackers to bypass the Same Origin Policy and set cooki…

medium
5
First published (updated )
CVE-2014-3620

Haxx LibcurlInput Validation

medium
4
First published (updated )
CVE-2014-2522

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Haxx CurlThe default configuration in cURL and libcurl 7.10.6 before 7.36.0 re-uses (1) SCP, (2) SFTP, (3) PO…

medium
6.4
First published (updated )
CVE-2014-0138

Haxx CurlcURL and libcurl 7.1 before 7.36.0, when using the OpenSSL, axtls, qsossl or gskit libraries for TLS…

medium
5.8
First published (updated )
CVE-2014-0139

Haxx LibcurlcURL and libcurl 7.10.6 through 7.34.0, when more than one authentication method is enabled, re-uses…

medium
4
First published (updated )
CVE-2014-0015

Haxx CurlInfoleak

medium
5
First published (updated )
CVE-2015-3236

Haxx CurlInput Validation

medium
6.4
First published (updated )
CVE-2015-3237

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Oracle Enterprise Manager Ops CenterInfoleak

medium
5
First published (updated )
CVE-2015-3153

Haxx LibcurlcURL and libcurl 7.10.6 through 7.41.0 does not properly re-use NTLM connections, which allows remot…

medium
5
First published (updated )
CVE-2015-3143

Haxx LibcurlcURL and libcurl 7.10.6 through 7.41.0 do not properly re-use authenticated Negotiate connections, w…

medium
5
First published (updated )
CVE-2015-3148

Haxx LibcurlInfoleak

medium
6.5
First published (updated )
CVE-2017-1000100

Haxx LibcurlInfoleak

medium
6.5
First published (updated )
CVE-2017-1000099

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Splunk Universal ForwardercURL libcurl could allow a local attacker to bypass security restrictions, caused by a SSH connectio…

medium
5.5
First published (updated )
CVE-2023-27538

Splunk Universal ForwardercURL libcurl could allow a remote attacker to bypass security restrictions, caused by a FTP too eage…

medium
5.9
First published (updated )
CVE-2023-27535

Splunk Universal ForwardercURL libcurl could allow a remote attacker to bypass security restrictions, caused by a GSS delegati…

medium
5.9
First published (updated )
CVE-2023-27536

Debian Debian LinuxInput Validation

medium
4.3
First published (updated )
CVE-2021-22924

Haxx Libcurlcurl: fopen race condition: CVE-2023-32001

medium
5.5
First published (updated )
CVE-2023-32001

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203