Lucene search

CVE-2024-0853

🗓️ 03 Feb 2024 14:50:15Reported by Alpine Linux Development TeamType

alpinelinux🔗 security.alpinelinux.org👁 62 Views

Insecure SSL session caching vulnerability in curl

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 46
CBLMariner	CVE-2024-0853 affecting package curl for versions less than 8.8.0-1	5 Aug 202403:22	–	cbl_mariner
CBLMariner	CVE-2024-0853 affecting package curl for versions less than 8.8.0-1	22 Jul 202415:42	–	cbl_mariner
Wolfi	CVE-2024-0853 vulnerabilities	3 Feb 202414:15	–	wolfi
FreeBSD	curl -- OCSP verification bypass with TLS session reuse	31 Jan 202400:00	–	freebsd
F5 Networks	K000148768: Curl vulnerability CVE-2024-0853	28 Nov 202400:00	–	f5
Veracode	Improper Certificate Validation	3 Feb 202403:55	–	veracode
UbuntuCve	CVE-2024-0853	31 Jan 202400:00	–	ubuntucve
Tenable Nessus	CBL Mariner 2.0 Security Update: curl (CVE-2024-0853)	6 Aug 202400:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : curl, curl-minimal, libcurl (ALAS2023-2024-581)	3 Apr 202400:00	–	nessus
Tenable Nessus	Curl 8.5.0 < 8.6.0 Security Bypass (CVE-2024-0853)	2 Feb 202400:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Alpine	edge-main	noarch	curl	8.6.0-r0	UNKNOWN
Alpine	3.17-main	noarch	curl	8.6.0-r0	UNKNOWN
Alpine	3.18-main	noarch	curl	8.6.0-r0	UNKNOWN
Alpine	3.19-main	noarch	curl	8.6.0-r0	UNKNOWN
Alpine	3.20-main	noarch	curl	8.6.0-r0	UNKNOWN
Alpine	3.21-main	noarch	curl	8.6.0-r0	UNKNOWN
Alpine	3.22-main	noarch	curl	8.6.0-r0	UNKNOWN

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

03 Feb 2024 14:15Current

7.2High risk

Vulners AI Score7.2

CVSS35.3

EPSS0.00156