Lucene search
K

73 matches found

Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.5 views

TencentOS Server 3: curl (TSSA-2022:0200)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0200 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

7.5CVSS7AI score0.04929EPSS
Exploits3References4
Vulnrichment
Vulnrichment
added 2025/04/02 12:0 a.m.5 views

CVE-2025-22925

OS4ED openSIS v7.0 to v9.1 was discovered to contain a SQL injection vulnerability via the table parameter at /attendance/AttendanceCodes.php. The remote, authenticated attacker requires the admin role to successfully exploit this vulnerability...

8.2AI score0.00403EPSS
Exploits0References2
CVE
CVE
added 2025/04/02 12:0 a.m.56 views

CVE-2025-22925

OS4ED openSIS (v7.0–v9.1) is affected by a SQL injection vulnerability in the /attendance/AttendanceCodes.php endpoint via the table parameter. The flaw requires an authenticated admin to exploit. Impact is high (availability impact stated) with no information on exploitation probability beyond t...

7.5CVSS8.2AI score0.00403EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/04/03 5:15 p.m.2 views

CVE-2024-27339

Kofax Power PDF PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS6.2AI score0.00421EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/03 4:18 p.m.10 views

CVE-2024-27339 Kofax Power PDF PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

Kofax Power PDF PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS8.1AI score0.00421EPSS
Exploits0References1
CVE
CVE
added 2024/04/03 4:18 p.m.69 views

CVE-2024-27339

Kofax Power PDF is affected by CVE-2024-27339 due to an out-of-bounds write in PDF file parsing that can allow arbitrary code execution. The flaw stems from insufficient validation of user-supplied data, leading to a write past the end of an allocated buffer. Exploitation requires user interactio...

7.8CVSS8AI score0.00421EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/08/31 12:16 p.m.1 views

BELL-CVE-2021-22925 CVE-2021-22925 does not affect BellSoft software

Bulletin has no description...

5.3CVSS7.3AI score0.04929EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2023/02/28 12:0 a.m.47 views

Ubuntu 16.04 ESM : curl vulnerabilities (USN-5894-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5894-1 advisory. Harry Sintonen and Tomas Hoger discovered that curl incorrectly handled TELNET connections when the -t option was used on the command line. Uninitialized...

5.9CVSS6.7AI score0.04929EPSS
Exploits3References4
SUSE CVE
SUSE CVE
added 2023/02/15 3:45 a.m.6 views

SUSE CVE-2021-22925

curl supports the -t command line option, known as CURLOPTTELNETOPTIONSin libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending NEWENV variables, libcurlcould be made to pass on uninitialized data from a stack based...

4.3CVSS6.3AI score0.04929EPSS
Exploits1References86
OpenVAS
OpenVAS
added 2023/01/31 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2023-1249)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.04929EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/01/30 12:0 a.m.46 views

EulerOS Virtualization 3.0.2.2 : curl (EulerOS-SA-2023-1249)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - curl before version 7.51.0 uses outdated IDNA 2003 standard to handle International Domain Names and this may lead users to...

7.5CVSS6.5AI score0.04929EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.30 views

Ubuntu: Security Advisory (USN-5021-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.4AI score0.04929EPSS
Exploits2References2
ICS
ICS
added 2022/06/14 12:0 a.m.149 views

Siemens OpenSSL Affecting Industrial Products

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SINEMA Remote Connect Server Vulnerabilities: Multiple 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to escalate privileges, disclose...

9.8CVSS8.6AI score0.34174EPSS
Exploits7References12
Tenable Nessus
Tenable Nessus
added 2022/05/26 12:0 a.m.29 views

EulerOS 2.0 SP3 : curl (EulerOS-SA-2022-1711)

According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port, and this wa...

5.3CVSS6.5AI score0.04929EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2022/05/25 12:0 a.m.14 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2022-1711)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.9AI score0.04929EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2022/04/22 2:30 p.m.42 views

Security Bulletin: Security Vulnerabilities affect IBM Cloud Private - curl (CVE-2021-22925)

Summary Security Vulnerabilities affect IBM Cloud Private - curl Vulnerability Details CVEID:CVE-2021-22925 DESCRIPTION: cURL libcurl could allow a remote attacker to obtain sensitive information, caused by a flaw in the option parser for sending NEWENV variables. By sniffing the network traffic,...

5.3CVSS6.6AI score0.04929EPSS
Exploits1Affected Software1
CBLMariner
CBLMariner
added 2022/04/09 6:51 a.m.19 views

CVE-2021-22925 affecting package curl for versions less than 7.76.0-5

CVE-2021-22925 affecting package curl for versions less than 7.76.0-5. A patched version of the package is available...

5.3CVSS7AI score0.04929EPSS
Exploits1
OpenVAS
OpenVAS
added 2022/02/13 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2022-1116)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.4AI score0.04929EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2022/02/13 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2022-1062)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6AI score0.0627EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2022/02/12 12:0 a.m.61 views

EulerOS Virtualization 3.0.6.6 : curl (EulerOS-SA-2022-1116)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - curl 7.7 through 7.76.1 suffers from an information disclosure when the -t command line option, known as CURLOPTTELNETOPTIONS in...

5.3CVSS6.7AI score0.04929EPSS
Exploits2References3
Rows per page
Query Builder