Lucene search
K

49 matches found

OSV
OSV
added 2026/01/05 3:54 p.m.7 views

CLSA-2026-1767628458 curl: Fix of CVE-2024-9681

CVE-2024-9681: improve HSTS subdomain handling to prevent incorrectly overriding parent domain entries...

6.5CVSS6.8AI score0.0197EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.6 views

TencentOS Server 4: curl (TSSA-2024:0874)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0874 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

6.5CVSS6.6AI score0.0197EPSS
Exploits1References2
Amazon
Amazon
added 2025/06/23 12:0 a.m.6 views

Medium: curl

Issue Overview: When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than otherwise intended. This affects curl using applications that enable HSTS and use URLs with the insecure HTTP:// scheme and perform...

6.5CVSS9.8AI score0.0197EPSS
Exploits1
Amazon
Amazon
added 2025/06/23 12:0 a.m.5 views

Medium: curl

Issue Overview: When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than otherwise intended. This affects curl using applications that enable HSTS and use URLs with the insecure HTTP:// scheme and perform...

6.5CVSS6.7AI score0.0197EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/10 2:37 p.m.11 views

Security Bulletin: AIX is vulnerable to sensitive information disclosure (CVE-2025-0167, CVE-2024-11053) and a denial of service (CVE-2024-9681) due to cURL libcurl

Summary Vulnerabilities in cURL libcurl could allow a remote attacker to obtain sensitive information CVE-2025-0167, CVE-2024-11053 or cause a denial of service CVE-2024-9681. AIX uses cURL libcurl as part of rsyslog, LV/PV encryption integration with HPCS and in Live Update for interacting with...

6.5CVSS6.4AI score0.0197EPSS
Exploits3Affected Software1
OpenVAS
OpenVAS
added 2025/06/04 12:0 a.m.5 views

SUSE: Security Advisory (SUSE-SU-2024:3925-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.7AI score0.0197EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2025/05/26 12:0 a.m.3 views

Fedora: Security Advisory (FEDORA-2024-a94430d221)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.7AI score0.0197EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2025/05/19 12:0 a.m.6 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2025-1568)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.8AI score0.0197EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2025/05/19 12:0 a.m.8 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2025-1552)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.8AI score0.0197EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2024-9681

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than otherwise...

6.5CVSS6.5AI score0.0197EPSS
Exploits1References3
CBLMariner
CBLMariner
added 2025/03/03 10:12 p.m.8 views

CVE-2024-9681 affecting package curl for versions less than 8.8.0-5

CVE-2024-9681 affecting package curl for versions less than 8.8.0-5. A patched version of the package is available...

6.5CVSS6.6AI score0.0197EPSS
Exploits1
CBLMariner
CBLMariner
added 2025/02/22 4:7 p.m.8 views

CVE-2024-9681 affecting package rust for versions less than 1.72.0-10

CVE-2024-9681 affecting package rust for versions less than 1.72.0-10. A patched version of the package is available...

6.5CVSS6.6AI score0.0197EPSS
Exploits1
CBLMariner
CBLMariner
added 2025/02/12 4:8 p.m.7 views

CVE-2024-9681 affecting package mysql for versions less than 8.0.40-3

CVE-2024-9681 affecting package mysql for versions less than 8.0.40-3. A patched version of the package is available...

6.5CVSS6.9AI score0.0197EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.6 views

EulerOS 2.0 SP11 : curl (EulerOS-SA-2025-1151)

According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than...

6.5CVSS6.7AI score0.0197EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/02/10 12:0 a.m.5 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2025-1151)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.0197EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/02/10 12:0 a.m.5 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2025-1132)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.0197EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/02/10 12:0 a.m.4 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2025-1170)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.0197EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/02/10 12:0 a.m.4 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2025-1186)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.0197EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.11 views

Azure Linux 3.0 Security Update: cmake / curl / mysql / rust (CVE-2024-9681)

The version of cmake / curl / mysql / rust installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-9681 advisory. - When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent...

6.5CVSS6.6AI score0.0197EPSS
Exploits1References2
CBLMariner
CBLMariner
added 2025/02/05 10:13 p.m.8 views

CVE-2024-9681 affecting package tensorflow for versions less than 2.16.1-7

CVE-2024-9681 affecting package tensorflow for versions less than 2.16.1-7. A patched version of the package is available...

6.5CVSS6.7AI score0.0197EPSS
Exploits1
Rows per page
Query Builder