Lucene search
CVE-2022-42916
🗓️ 29 Oct 2022 02:09:15Reported by Alpine Linux Development TeamType 
alpinelinux🔗 security.alpinelinux.org👁 51 Views
In curl before 7.86.0, HSTS check bypass allows HTTP. IDN conversion bypasses HSTS support, enabling HTTP
Show more
| Reporter | Title | Published | Views | Family All 106 |
|---|---|---|---|---|
 | CVE-2022-42916 | 26 Oct 202214:53 | – | redhatcve |
 | CVE-2022-42916 | 29 Oct 202202:15 | – | nvd |
 | CURL-CVE-2022-42916 HSTS bypass via IDN | 26 Oct 202208:00 | – | osv |
| UBUNTU-CVE-2022-42916 | 26 Oct 202207:00 | – | osv |
| CGA-2J5V-WPRF-P75R | 6 Jun 202412:21 | – | osv |
| CVE-2022-42916 | 29 Oct 202202:15 | – | osv |
| SUSE-SU-2022:3785-1 Security update for curl | 26 Oct 202218:20 | – | osv |
| OPENSUSE-SU-2024:12447-1 curl-7.86.0-1.1 on GA media | 15 Jun 202400:00 | – | osv |
| USN-5702-1 curl vulnerabilities | 26 Oct 202217:28 | – | osv |
| RHSA-2022:8840 Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.51 SP1 security update | 30 Sep 202402:24 | – | osv |
10
| OS | OS Version | Architecture | Package | Package Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-main | noarch | curl | 7.86.0-r0 | UNKNOWN |
| Alpine | 3.15-main | noarch | curl | 7.80.0-r4 | UNKNOWN |
| Alpine | 3.16-main | noarch | curl | 7.83.1-r4 | UNKNOWN |
| Alpine | 3.17-main | noarch | curl | 7.86.0-r0 | UNKNOWN |
| Alpine | 3.18-main | noarch | curl | 7.86.0-r0 | UNKNOWN |
| Alpine | 3.19-main | noarch | curl | 7.86.0-r0 | UNKNOWN |
| Alpine | 3.20-main | noarch | curl | 7.86.0-r0 | UNKNOWN |
| Alpine | 3.21-main | noarch | curl | 7.86.0-r0 | UNKNOWN |
| Alpine | 3.22-main | noarch | curl | 7.86.0-r0 | UNKNOWN |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo29 Oct 2022 02:15Current
8.6High risk
Vulners AI Score8.6
CVSS37.5
EPSS0.00033