Lucene search
K

49 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/05/26 6:45 a.m.13 views

Security Bulletin: Vulnerabilities exists in IBM Cloud Pak for Data System (CPDS 1.0) - Cyclops.

Summary Vulnerabilities exists in IBM Cloud Pak for Data System CPDS 1.0 - Cyclops addressed in 11.3.1.1. Vulnerability Details CVEID:CVE-2025-4878 DESCRIPTION: A vulnerability was found in libssh, where an uninitialized variable exists under certain conditions in the privatekeyfromfile function...

6.5CVSS6.8AI score0.16212EPSS
Exploits3Affected Software1
Rosalinux
Rosalinux
added 2025/09/11 10:8 a.m.4 views

Advisory ROSA-SA-2025-2997

software: curl 8.7.1 OS: ROSA-CHROME unaffected versions = curl-8.7.1-4 affected versions curl-8.7.1-4 CVE-ID: CVE-2024-11053 BDU-ID: 2024-11106 CVE-Crit: CRITICAL CVE-DESC.: A vulnerability in the netrc file handler of the cURL command line utility is related to insufficient protection of servic...

6.5CVSS6.9AI score0.01351EPSS
Exploits3
OpenVAS
OpenVAS
added 2025/08/06 12:0 a.m.1 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2025-1870)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.3CVSS6.5AI score0.01351EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.5 views

TencentOS Server 4: curl (TSSA-2025:0009)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0009 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

3.4CVSS6.8AI score0.01351EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/10 2:37 p.m.11 views

Security Bulletin: AIX is vulnerable to sensitive information disclosure (CVE-2025-0167, CVE-2024-11053) and a denial of service (CVE-2024-9681) due to cURL libcurl

Summary Vulnerabilities in cURL libcurl could allow a remote attacker to obtain sensitive information CVE-2025-0167, CVE-2024-11053 or cause a denial of service CVE-2024-9681. AIX uses cURL libcurl as part of rsyslog, LV/PV encryption integration with HPCS and in Live Update for interacting with...

6.5CVSS6.4AI score0.0197EPSS
Exploits3Affected Software1
OpenVAS
OpenVAS
added 2025/06/04 12:0 a.m.5 views

SUSE: Security Advisory (SUSE-SU-2024:4288-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.4CVSS6.9AI score0.01351EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.18 views

Alibaba Cloud Linux 3 : 0038: mysql:8.0 (ALINUX3-SA-2025:0038)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2025:0038 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-11053: When asked to both use a...

9.1CVSS7.1AI score0.16212EPSS
Exploits3References50
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/28 10:33 a.m.24 views

Security Bulletin: Security vulnerabilities affect multiple packages shipped with IBM CICS TX Advanced.

Summary IBM CICS TX Advanced is impacted by security vulnerabilities found in packages GLib2.0, libxml2, glibc , krb5 Kerberos, libtasn1-6, Expat, OpenSSL, GnuTLS and curl. These are shipped as part of the product. Vulnerability Details CVEID:CVE-2024-12133 DESCRIPTION: A flaw in libtasn1 causes...

9.8CVSS9.3AI score0.14859EPSS
Exploits5Affected Software1
CBLMariner
CBLMariner
added 2025/04/12 2:52 a.m.10 views

CVE-2024-11053 affecting package mysql for versions less than 8.0.41-1

CVE-2024-11053 affecting package mysql for versions less than 8.0.41-1. An upgraded version of the package is available that resolves this issue...

3.4CVSS6.9AI score0.01351EPSS
Exploits1
CBLMariner
CBLMariner
added 2025/03/27 10:36 p.m.6 views

CVE-2024-11053 affecting package mysql for versions less than 8.0.41-1

CVE-2024-11053 affecting package mysql for versions less than 8.0.41-1. An upgraded version of the package is available that resolves this issue...

3.4CVSS7.3AI score0.01351EPSS
Exploits1
OpenVAS
OpenVAS
added 2025/03/19 12:0 a.m.6 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2025-1290)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.4CVSS4.1AI score0.01351EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/03/19 12:0 a.m.2 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2025-1289)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.4CVSS4.1AI score0.01351EPSS
Exploits1References2
CBLMariner
CBLMariner
added 2025/03/13 9:13 p.m.5 views

CVE-2024-11053 affecting package curl for versions less than 8.11.1-1

CVE-2024-11053 affecting package curl for versions less than 8.11.1-1. An upgraded version of the package is available that resolves this issue...

3.4CVSS3.9AI score0.01351EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2024-11053

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When asked to both use a .netrc file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host...

3.4CVSS6.6AI score0.01351EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/02/27 12:0 a.m.11 views

Photon OS 5.0: Curl PHSA-2025-5.0-0479

An update of the curl package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0479. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

6.5CVSS6.9AI score0.01351EPSS
Exploits3References4
CBLMariner
CBLMariner
added 2025/02/16 4:8 p.m.7 views

CVE-2024-11053 affecting package curl for versions less than 8.8.0-4

CVE-2024-11053 affecting package curl for versions less than 8.8.0-4. A patched version of the package is available...

3.4CVSS6.9AI score0.01351EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.9 views

Azure Linux 3.0 Security Update: cmake / curl / mysql (CVE-2024-11053)

The version of cmake / curl / mysql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-11053 advisory. - When asked to both use a .netrc file for credentials and to follow HTTP redirects, curl could...

3.4CVSS6.8AI score0.01351EPSS
Exploits1References2
CBLMariner
CBLMariner
added 2025/02/05 10:13 p.m.6 views

CVE-2024-11053 affecting package tensorflow for versions less than 2.16.1-7

CVE-2024-11053 affecting package tensorflow for versions less than 2.16.1-7. A patched version of the package is available...

3.4CVSS4AI score0.01351EPSS
Exploits1
OSV
OSV
added 2025/02/03 9:18 a.m.2 views

SUSE-SU-2025:20106-1 Security update for curl

This update for curl fixes the following issues: - CVE-2024-11053: Fixed password leak used for the first host to the followed-to host under certain circumstances bsc1234068...

3.4CVSS5.8AI score0.01351EPSS
Exploits1References3
F5 Networks
F5 Networks
added 2025/01/27 3:26 a.m.9 views

K000149485: cURL vulnerability CVE-2024-11053

Security Advisory Description When asked to both use a .netrc file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has an entry that matches th...

3.4CVSS7AI score0.01351EPSS
Exploits1
Rows per page
Query Builder