Lucene search
K

62 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : curl-7.61.1-12.el8 (AXSA:2020-648:04)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-648:04 advisory. curl: double free due to subsequent call of realloc CVE-2019-5481 curl: heap buffer overflow in function tftpreceivepacket CVE-2019-5482 curl: TFTP...

9.8CVSS8.6AI score0.49739EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 7 : curl-7.29.0-57.el7 (AXSA:2020-4602:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-4602:02 advisory. curl: TFTP receive heap buffer overflow in tftpreceivepacket function CVE-2019-5436 Tenable has extracted the preceding description block directly from the...

7.8CVSS8.6AI score0.49739EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.13 views

Alibaba Cloud Linux 3 : 0078: curl (ALINUX3-SA-2021:0078)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2021:0078 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2019-3822: libcurl versions from 7.36....

9.8CVSS8.3AI score0.49739EPSS
Exploits9References13
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2019-5436

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap buffer overflow in the TFTP receiving code allows for DoS or arbitrary code execution in libcurl versions 7.19.4 through 7.64.1. CVE-2019-5436 Note that...

7.8CVSS7.2AI score0.49739EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/07 10:45 p.m.43 views

Security Bulletin: IBM Flex System switch firmware products are affected by a vulnerability in libcurl (CVE-2019-5436)

Summary IBM Flex System switch firmware products have addressed the following vulnerability in libcurl. Vulnerability Details CVEID: CVE-2019-5436 DESCRIPTION: cURL libcurl is vulnerable to a heap-based buffer overflow, caused by improper bounds checking by the tftpreceivepacket function. By...

7.8CVSS1.7AI score0.49739EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/07 10:45 p.m.45 views

Security Bulletin: IBM RackSwitch firmware products are affected by a vulnerability in libcurl (CVE-2019-5436)

Summary IBM RackSwitch firmware products have addressed the following vulnerability in libcurl. Vulnerability Details CVEID: CVE-2019-5436 DESCRIPTION: cURL libcurl is vulnerable to a heap-based buffer overflow, caused by improper bounds checking by the tftpreceivepacket function. By sending over...

7.8CVSS1.7AI score0.49739EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.25 views

Oracle Linux 8 : curl (ELSA-2020-1792)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-1792 advisory. - double free due to subsequent call of realloc CVE-2019-5481 - fix heap buffer overflow in function tftpreceivepacket CVE-2019-5482 Tenable has...

9.8CVSS6.7AI score0.49739EPSS
Exploits1References4
F5 Networks
F5 Networks
added 2023/02/21 6:35 p.m.35 views

K55133295: cURL and libcurl vulnerability CVE-2019-5436

Security Advisory Description A heap buffer overflow in the TFTP receiving code allows for DoS or arbitrary code execution in libcurl versions 7.19.4 through 7.64.1. CVE-2019-5436 Impact An attacker could cause a denial of service DoS or arbitrary code execution, if you use cURL to transfer data ...

7.8CVSS7.3AI score0.49739EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.25 views

Ubuntu: Security Advisory (USN-3993-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.49739EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.24 views

Slackware: Security Advisory (SSA:2019-142-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.8AI score0.49739EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.26 views

Mageia: Security Advisory (MGASA-2019-0337)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.49739EPSS
Exploits2References10
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2019:1357-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.49739EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.9 views

SUSE: Security Advisory (SUSE-SU-2019:2009-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.5AI score0.49739EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2019:1357-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.49739EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/02/01 12:0 a.m.52 views

CentOS 8 : curl (CESA-2020:1792)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:1792 advisory. - curl: TFTP receive heap buffer overflow in tftpreceivepacket function CVE-2019-5436 - curl: double free due to subsequent call of realloc CVE-2019-54...

9.8CVSS6.6AI score0.49739EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.23 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : curl Vulnerability (NS-SA-2020-0098)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has curl packages installed that are affected by a vulnerability: - A heap buffer overflow in the TFTP receiving code allows for DoS or arbitrary code execution in libcurl versions 7.19.4 through 7.64.1. CVE-2019-5436 Note that...

7.8CVSS7.3AI score0.49739EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2020/09/11 12:41 p.m.48 views

Security Bulletin: Vulnerability in libcurl affects the OS image for RedHat Enterprise Linux for IBM Cloud Pak System (CVE-2019-5436)

Summary Vulnerability has been identified in libcurl that is used in OS image for RedHat Enterprise Linux for IBM Cloud Pak System. This security bulletin applies to the OS image for RedHat Enterprise Linux v7.7. OS image for RedHat Enterprise Linux has addressed the vulnerability. Vulnerability...

7.8CVSS1AI score0.49739EPSS
Exploits1Affected Software1
RedHat Linux
RedHat Linux
added 2020/04/28 3:45 p.m.86 views

Moderate: Red Hat Security Advisory: curl security update

An update for curl is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

9.8CVSS6.7AI score0.49739EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2020/04/10 12:0 a.m.74 views

CentOS 7 : curl (RHSA-2020:1020)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1020 advisory. - A heap buffer overflow in the TFTP receiving code allows for DoS or arbitrary code execution in libcurl versions 7.19.4 through 7.64.1. CVE-2019-5436 Note tha...

7.8CVSS7.3AI score0.49739EPSS
Exploits1References2
Cent OS
Cent OS
added 2020/04/08 5:51 p.m.146 views

curl, libcurl security update

CentOS Errata and Security Advisory CESA-2020:1020 An update for curl is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

7.8CVSS6.7AI score0.49739EPSS
Exploits1References7
Rows per page
Query Builder