Lucene search
K

46 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : curl-7.61.1-22.el8.4 (AXSA:2022-3789:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3789:02 advisory. curl: HTTP compression denial of service CVE-2022-32206 curl: FTP-KRB bad message verification CVE-2022-32208 Tenable has extracted the preceding...

6.5CVSS7.5AI score0.3197EPSS
Exploits2References3
IBM Security Bulletins
IBM Security Bulletins
added 2024/07/29 7:12 p.m.33 views

Security Bulletin: IBM Cloud Pak for Data is vulnerable to denial of service due to cURL libcurl ( CVE-2022-32208, CVE-2022-32206 )

Summary cURL libcurl is used by IBM Cloud Pak for Data as part of the platform. CVE-2022-32208, CVE-2022-32206. Vulnerability Details CVEID:CVE-2022-32208 DESCRIPTION: cURL libcurl is vulnerable to a man-in-the-middle attack, caused by a flaw in the handling of message verification failures. An...

6.5CVSS7.3AI score0.3197EPSS
Exploits2Affected Software1
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.33 views

openSUSE: Security Advisory for curl (SUSE-SU-2022:2327-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS8.3AI score0.3197EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2023/03/20 12:0 a.m.55 views

CBL Mariner 2.0 Security Update: curl (CVE-2022-32208)

The version of curl installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-32208 advisory. - When curl 7.84.0 does FTP transfers secured by krb5, it handles message verification failures wrongly. This fl...

5.9CVSS7.2AI score0.05595EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/01/12 11:10 p.m.28 views

Security Bulletin: IBM Security Verify Access Appliance includes components with known vulnerabilities

Summary Multiple Security Vulnerabilities were found in the IBM Security Verify Access ISVA Appliance Operating System layer. These vulnerabilities have been addressed in ISVA 10.0.5.0, which is linked below. Vulnerability Details CVEID:CVE-2022-2526 DESCRIPTION: systemd could allow a remote...

9.8CVSS9.8AI score0.95764EPSS
Exploits13Affected Software1
OpenVAS
OpenVAS
added 2022/12/28 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2022-2890)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.5AI score0.3197EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2022/12/19 12:0 a.m.19 views

Western Digital My Cloud Multiple Products 5.x < 5.25.124 Multiple Vulnerabilities (WDC-22019)

Multiple Western Digital My Cloud products are prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progr...

9.8CVSS7.4AI score0.3197EPSS
Exploits14References2
RedHat Linux
RedHat Linux
added 2022/12/08 1:21 p.m.84 views

Important: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.51 SP1 security update

An update is now available for Red Hat JBoss Core Services Apache HTTP Server 2.4.51 Service Pack 1. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

10CVSS7.6AI score0.95764EPSS
Exploits20References24
RedHat Linux
RedHat Linux
added 2022/12/08 1:8 p.m.93 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.51 SP1 security update

An update is now available for Red Hat JBoss Core Services Apache HTTP Server 2.4.51 Service Pack 1 on Red Hat Enterprise Linux versions 7 and 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which...

10CVSS7.4AI score0.95764EPSS
Exploits14References18
Tenable Nessus
Tenable Nessus
added 2022/12/08 12:0 a.m.57 views

RHEL 7 / 8 : Red Hat JBoss Core Services Apache HTTP Server 2.4.51 SP1 (RHSA-2022:8840)

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:8840 advisory. Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP...

10CVSS7.8AI score0.95764EPSS
Exploits14References37
Cloud Foundry
Cloud Foundry
added 2022/12/07 12:0 a.m.35 views

USN-5495-1: curl vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Canonical Ubuntu 22.04 Description Harry Sintonen discovered that curl incorrectly handled certain cookies. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 21.1...

9.8CVSS7.8AI score0.3197EPSS
Exploits4Affected Software3
OpenVAS
OpenVAS
added 2022/10/10 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2022-2454)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.5AI score0.3197EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2022/10/10 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2022-2426)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.8AI score0.3197EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2022/10/09 12:0 a.m.36 views

EulerOS 2.0 SP8 : curl (EulerOS-SA-2022-2454)

According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An insufficiently protected credentials vulnerability exists in curl 4.9 to and include curl 7.82.0 are affected that could allow an attacker to...

6.5CVSS6.8AI score0.3197EPSS
Exploits4References5
IBM Security Bulletins
IBM Security Bulletins
added 2022/10/07 6:12 p.m.70 views

Security Bulletin: Vulnerabilities in libcurl may affect IBM Spectrum Copy Data Management (CVE-2022-32206, CVE-2022-32208)

Summary Vulnerabilities in libcurl such as denial of service and man-in-the-middle attacks may affect IBM Spectrum Copy Data Management. Vulnerability Details CVEID:CVE-2022-32206 DESCRIPTION: cURL libcurl is vulnerable to a denial of service, caused by a flaw in the number of acceptable "links" ...

6.5CVSS7.5AI score0.3197EPSS
Exploits2Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/08/31 12:0 a.m.45 views

AlmaLinux 8 : curl (ALSA-2022:6159)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:6159 advisory. - curl 7.84.0 supports chained HTTP compression algorithms, meaning that a serverresponse can be compressed multiple times and potentially with different...

6.5CVSS6.8AI score0.3197EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2022/08/29 12:0 a.m.39 views

Rocky Linux 8 : curl (RLSA-2022:6159)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:6159 advisory. - curl 7.84.0 supports chained HTTP compression algorithms, meaning that a serverresponse can be compressed multiple times and potentially with differen...

6.5CVSS6.8AI score0.3197EPSS
Exploits2References5
Debian
Debian
added 2022/08/28 11:0 p.m.112 views

[SECURITY] [DLA 3085-1] curl security update

Debian LTS Advisory DLA-3085-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany August 29, 2022 https://wiki.debian.org/LTS Package : curl Version : 7.64.0-4+deb10u3 CVE ID : CVE-2021-22898 CVE-2021-22924 CVE-2021-22946 CVE-2021-22947 CVE-2022-22576 CVE-2022-27776...

8.1CVSS6.8AI score0.3197EPSS
Exploits10
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-5499-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.3AI score0.05595EPSS
Exploits2References2
Oracle linux
Oracle linux
added 2022/08/25 12:0 a.m.156 views

curl security update

7.76.1-14.el90.5 - fix unpreserved file permissions CVE-2022-32207 - fix HTTP compression denial of service CVE-2022-32206 - fix FTP-KRB bad message verification CVE-2022-32208...

9.8CVSS0.7AI score0.3197EPSS
Exploits3
Rows per page
Query Builder