Lucene search
K

81 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.4 views

Siemens SIMATIC S7-1500 Missing Initialization of Resource (CVE-2021-22898)

curl 7.7 through 7.76.1 suffers from an information disclosure when the -t command line option, known as CURLOPTTELNETOPTIONS in libcurl, is used to send variable=content pairs to TELNET servers. Due to a flaw in the option parser for sending NEWENV variables, libcurl could be made to pass on...

3.1CVSS6.8AI score0.04385EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.2 views

TencentOS Server 3: curl (TSSA-2022:0240)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2022:0240 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

3.1CVSS7.3AI score0.04385EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/12/12 4:58 p.m.37 views

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data v5.0.3 is vulnerable to multiple Operator package issues

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data v5.0.3 is vulnerable to multiple Operator package issues.. We have performed updates to the Operators used by our Speech Services. The following vulnerabilities have been addressed in this update. Please read the details for...

8.1CVSS9.8AI score0.60122EPSS
Exploits10Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/11/01 12:0 a.m.53 views

Puppet Enterprise < 2019.8.7 / 2021.x < 2021.2 Curl Vulnerabilities

For more information about this vulnerability, refer to the security announcements. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text in this plugin were extracted...

8.1CVSS7.5AI score0.60122EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2023/11/01 12:0 a.m.26 views

Puppet Agent 6.x < 6.23.0 / 7.x < 7.8.0 Multiple Vulnerabilities

On May 26, 2021 curl published security updates addressing 3 CVEs: CVE-2021-22897 Low CVE-2021-22898 Medium CVE-2021-22901 High. Previous releases of Puppet Agent contain this vulnerable version of curl. For more information about this vulnerability, refer to the curl ecurity announcements. Note...

8.1CVSS6.9AI score0.60122EPSS
Exploits3References7
OSV
OSV
added 2023/08/31 12:14 p.m.0 views

BELL-CVE-2021-22898 CVE-2021-22898 does not affect BellSoft software

Bulletin has no description...

3.1CVSS6.9AI score0.04385EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2023/02/28 12:0 a.m.47 views

Ubuntu 16.04 ESM : curl vulnerabilities (USN-5894-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5894-1 advisory. Harry Sintonen and Tomas Hoger discovered that curl incorrectly handled TELNET connections when the -t option was used on the command line. Uninitialized...

5.9CVSS6.7AI score0.04929EPSS
Exploits3References4
OpenVAS
OpenVAS
added 2022/12/19 12:0 a.m.19 views

Western Digital My Cloud Multiple Products 5.x < 5.25.124 Multiple Vulnerabilities (WDC-22019)

Multiple Western Digital My Cloud products are prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progr...

9.8CVSS7.4AI score0.3197EPSS
Exploits14References2
Debian
Debian
added 2022/08/28 11:0 p.m.112 views

[SECURITY] [DLA 3085-1] curl security update

Debian LTS Advisory DLA-3085-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany August 29, 2022 https://wiki.debian.org/LTS Package : curl Version : 7.64.0-4+deb10u3 CVE ID : CVE-2021-22898 CVE-2021-22924 CVE-2021-22946 CVE-2021-22947 CVE-2022-22576 CVE-2022-27776...

8.1CVSS6.8AI score0.3197EPSS
Exploits10
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.30 views

Ubuntu: Security Advisory (USN-5021-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.4AI score0.04929EPSS
Exploits2References2
Debian
Debian
added 2022/08/01 4:58 p.m.199 views

[SECURITY] [DSA 5197-1] curl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5197-1 [email protected] https://www.debian.org/security/ Markus Koschany August 01, 2022 https://www.debian.org/security/faq -...

9.8CVSS8.1AI score0.3197EPSS
Exploits15
CBLMariner
CBLMariner
added 2022/04/09 6:51 a.m.13 views

CVE-2021-22898 affecting package curl for versions less than 7.76.0-5

CVE-2021-22898 affecting package curl for versions less than 7.76.0-5. A patched version of the package is available...

3.1CVSS6.1AI score0.04385EPSS
Exploits1
ICS
ICS
added 2022/03/08 12:0 a.m.126 views

Siemens SINEC INS

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SINEC INS Vulnerability: Using Components with Known Vulnerabilities 2. RISK EVALUATION Successful exploitation of this vulnerability in third-party components could allow an attacker...

9.8CVSS8.4AI score0.21952EPSS
Exploits1References11
OpenVAS
OpenVAS
added 2022/02/13 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2022-1116)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.4AI score0.04929EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2022/02/13 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2022-1062)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6AI score0.0627EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2022/02/12 12:0 a.m.61 views

EulerOS Virtualization 3.0.6.6 : curl (EulerOS-SA-2022-1116)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - curl 7.7 through 7.76.1 suffers from an information disclosure when the -t command line option, known as CURLOPTTELNETOPTIONS in...

5.3CVSS6.7AI score0.04929EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.48 views

AlmaLinux 8 : curl (ALSA-2021:4511)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2021:4511 advisory. - curl 7.1.1 to and including 7.75.0 is vulnerable to an Exposure of Private Personal Information to an Unauthorized Actor by leaking credentials in the...

5.3CVSS6.8AI score0.05301EPSS
Exploits3References4
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.18 views

Mageia: Security Advisory (MGASA-2021-0243)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.1CVSS5.9AI score0.04385EPSS
Exploits1References5
OSV
OSV
added 2022/01/26 12:3 p.m.12 views

CLSA-2022-1643198583 Fix of CVE: CVE-2021-22876, CVE-2021-22898, CVE-2021-22925

CVE-2021-22925: fix TELNET stack contents disclosure again - CVE-2021-22898: fix TELNET stack contents disclosure - CVE-2021-22876: prevent automatic referer from leaking credentials...

5.3CVSS6.6AI score0.05301EPSS
Exploits3References1
Ubuntu
Ubuntu
added 2022/01/20 11:40 a.m.142 views

USN-5021-2: curl vulnerability

USN-5021-1 fixed vulnerabilities in curl. This update provides the corresponding updates for Ubuntu 16.04 ESM. Original advisory details: Harry Sintonen and Tomas Hoger discovered that curl incorrectly handled TELNET connections when the -t option was used on the command line. Uninitialized data...

5.3CVSS6.5AI score0.04929EPSS
Exploits2
Rows per page
Query Builder