Lucene search
K

60 matches found

Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.10 views

Alibaba Cloud Linux 3 : 0070: curl (ALINUX3-SA-2021:0070)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2021:0070 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-22922: When curl is instructed to...

6.5CVSS6.3AI score0.0627EPSS
Exploits3References4
Vulnrichment
Vulnrichment
added 2025/04/02 12:0 a.m.6 views

CVE-2025-22924

OS4ED openSIS v7.0 through v9.1 contains a SQL injection vulnerability via the stuid parameter at /modules/students/Student.php...

8.2AI score0.00376EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/04/02 12:0 a.m.11 views

CVE-2025-22924

OS4ED openSIS v7.0 through v9.1 contains a SQL injection vulnerability via the stuid parameter at /modules/students/Student.php...

0.00376EPSS
Exploits0References2
Circl
Circl
added 2023/05/01 8:29 p.m.5 views

CVE-2023-22924

creationtimestamp| type| source ---|---|--- 2023-05-01 20:29:51+00:00| seen| https://t.me/cibsecurity/63137...

4.9CVSS5AI score0.008EPSS
Exploits0References1
NVD
NVD
added 2023/05/01 5:15 p.m.24 views

CVE-2023-22924

A buffer overflow vulnerability in the Zyxel NBG-418N v2 firmware versions prior to V1.00AARP.14C0 could allow a remote authenticated attacker with administrator privileges to cause denial-of-service DoS conditions by executing crafted CLI commands on a vulnerable device...

4.9CVSS5.2AI score0.008EPSS
Exploits0References1
CVE
CVE
added 2023/05/01 12:0 a.m.56 views

CVE-2023-22924

CVE-2023-22924 concerns the Zyxel NBG-418N v2 router. A buffer overflow in the device’s CLI handling affects firmware versions prior to V1.00(AARP.14)C0. An attacker with remote network access and administrator privileges can trigger the overflow by crafting CLI commands, leading to denial-of-ser...

4.9CVSS5.2AI score0.008EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/04/11 12:0 a.m.33 views

Siemens Industrial Devices using libcurl Use After Free (CVE-2021-22924)

libcurl keeps previously used connections in a connection pool for subsequenttransfers to reuse, if one of them matches the setup.Due to errors in the logic, the config matching function did not take 'issuercert' into account and it compared the involved paths case insensitively,which could lead ...

4.3CVSS6.2AI score0.0627EPSS
Exploits1References18
OpenVAS
OpenVAS
added 2022/12/19 12:0 a.m.19 views

Western Digital My Cloud Multiple Products 5.x < 5.25.124 Multiple Vulnerabilities (WDC-22019)

Multiple Western Digital My Cloud products are prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progr...

9.8CVSS7.4AI score0.3197EPSS
Exploits14References2
Debian
Debian
added 2022/08/28 11:0 p.m.120 views

[SECURITY] [DLA 3085-1] curl security update

Debian LTS Advisory DLA-3085-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany August 29, 2022 https://wiki.debian.org/LTS Package : curl Version : 7.64.0-4+deb10u3 CVE ID : CVE-2021-22898 CVE-2021-22924 CVE-2021-22946 CVE-2021-22947 CVE-2022-22576 CVE-2022-27776...

8.1CVSS6.8AI score0.3197EPSS
Exploits10
Debian
Debian
added 2022/08/01 4:58 p.m.206 views

[SECURITY] [DSA 5197-1] curl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5197-1 [email protected] https://www.debian.org/security/ Markus Koschany August 01, 2022 https://www.debian.org/security/faq -...

9.8CVSS8.1AI score0.3197EPSS
Exploits15
ICS
ICS
added 2022/06/14 12:0 a.m.150 views

Siemens OpenSSL Affecting Industrial Products

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SINEMA Remote Connect Server Vulnerabilities: Multiple 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to escalate privileges, disclose...

9.8CVSS8.6AI score0.34174EPSS
Exploits7References12
IBM Security Bulletins
IBM Security Bulletins
added 2022/04/22 2:34 p.m.34 views

Security Bulletin: Security Vulnerabilities affect IBM Cloud Private - curl (CVE-2021-22924)

Summary Security Vulnerabilities affect IBM Cloud Private - curl Vulnerability Details CVEID: CVE-2021-22924 DESCRIPTION: An unspecified error with bad connection reused due to improper path name validation in cURL libcurl has an unknown impact and attack vector. CVSS Base score: 5.3 CVSS Tempora...

4.3CVSS0.8AI score0.0627EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/04/14 12:0 a.m.40 views

RHEL 7 : rh-dotnet31-curl (RHSA-2022:1354)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:1354 advisory. .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR...

7.5CVSS6.9AI score0.0627EPSS
Exploits4References11
CBLMariner
CBLMariner
added 2022/04/09 6:51 a.m.18 views

CVE-2021-22924 affecting package curl for versions less than 7.76.0-5

CVE-2021-22924 affecting package curl for versions less than 7.76.0-5. A patched version of the package is available...

4.3CVSS6.3AI score0.0627EPSS
Exploits1
OpenVAS
OpenVAS
added 2022/02/13 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2022-1062)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6AI score0.0627EPSS
Exploits7References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.28 views

Mageia: Security Advisory (MGASA-2021-0384)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.0627EPSS
Exploits4References8
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/20 10:43 p.m.137 views

Security Bulletin: IBM MaaS360 Cloud Extender and Modules have various vulnerabilities (CVE-2021-22924, CVE-2021-3712)

Summary A vulnerability contained within a 3rd party component was identified and remediated in the IBM MaaS360 Cloud Extender Agent V2.106.100.008 and Modules. Vulnerability Details CVEID: CVE-2021-22924 DESCRIPTION: An unspecified error with bad connection reused due to improper path name...

7.4CVSS6.4AI score0.50445EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/22 3:42 p.m.45 views

Security Bulletin: Vulnerability in libcURL affect IBM Rational ClearCase ( CVE-2021-22924)

Summary libcURL vulnerabilities were disclosed by the libcURL Project. libcURL is used by IBM Rational ClearCase. IBM Rational ClearCase has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2021-22924 DESCRIPTION: An unspecified error with bad connection reused due to improper path...

4.3CVSS6.1AI score0.0627EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2021/11/17 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2021-2769)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.1AI score0.0982EPSS
Exploits5References2
Oracle linux
Oracle linux
added 2021/11/16 12:0 a.m.58 views

curl security and bug fix update

7.61.1-22 - fix STARTTLS protocol injection via MITM CVE-2021-22947 - fix protocol downgrade required TLS bypass CVE-2021-22946 7.61.1-21 - fix TELNET stack contents disclosure again CVE-2021-22925 - fix TELNET stack contents disclosure CVE-2021-22898 - fix bad connection reuse due to flawed path...

7.5CVSS6.5AI score0.0627EPSS
Exploits8
Rows per page
Query Builder