Lucene search
K

53 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : curl-7.61.1-30.el8.3 (AXSA:2023-6337:12)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6337:12 advisory. curl: GSS delegation too eager connection re-use CVE-2023-27536 curl: IDN wildcard match may lead to Improper Cerificate Validation CVE-2023-28321...

5.9CVSS8.5AI score0.0181EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.8 views

Alibaba Cloud Linux 3 : 0112: curl (ALINUX3-SA-2023:0112)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2023:0112 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-27536: An authentication bypass...

5.9CVSS6.5AI score0.0181EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2023-28321

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An improper certificate validation vulnerability exists in curl v8.1.0 in the way it supports matching of wildcard patterns when listed as Subject Alternative...

5.9CVSS6.4AI score0.0181EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/07/24 12:0 a.m.17 views

Photon OS 5.0: Cmake PHSA-2023-5.0-0035

An update of the cmake package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-5.0-0035. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

9.8CVSS7.5AI score0.82017EPSS
Exploits14References20
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.33 views

CBL Mariner 2.0 Security Update: rust / tensorflow / curl / mysql (CVE-2023-28321)

The version of rust / tensorflow / curl / mysql installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-28321 advisory. - An improper certificate validation vulnerability exists in curl v8.1.0 in the way ...

5.9CVSS6.5AI score0.0181EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/06/14 4:27 p.m.41 views

Security Bulletin: Vulnerabilities in libcurl, cURL and Linux Kernel might affect IBM Storage Copy Data Management

Summary IBM Storage Copy Data Management can be affected by vulnerabilities in libcurl, cURL and Linux Kernel. Vulnerabilities include an attacker could exploit these vulnerabilities to overflow a buffer and execute arbitrary code on the system, to insert cookies at will into a running program, t...

9.8CVSS9.7AI score0.78483EPSS
Exploits29Affected Software1
CBLMariner
CBLMariner
added 2024/04/17 10:2 p.m.37 views

CVE-2023-28321 affecting package tensorflow for versions less than 2.16.1-1

CVE-2023-28321 affecting package tensorflow for versions less than 2.16.1-1. An upgraded version of the package is available that resolves this issue...

5.9CVSS6.8AI score0.0181EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2024/01/26 9:52 p.m.37 views

Security Bulletin: IBM Storage Ceph is vulnerable to Improper Certificate Validation in the RHEL UBI (CVE-2023-28321)

Summary RHEL UBI is used by IBM Storage Ceph as the base operating system. CVE-2023-28321 This bulletin identifies the steps to take to address the vulnerability in the RHEL UBI. Vulnerability Details CVEID:CVE-2023-28321 DESCRIPTION: cURL libcurl could allow a remote attacker to bypass security...

5.9CVSS6.5AI score0.0181EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/01/18 9:30 p.m.51 views

Security Bulletin: IBM Storage Ceph is vulnerable to Improper Certificate Validation in the RHEL UBI (CVE-2023-28321)

Summary RHEL UBI is used by IBM Storage Ceph as the base operating system. CVE-2023-28321 This bulletin identifies the steps to take to address the vulnerability in the RHEL UBI. Vulnerability Details CVEID: CVE-2023-28321 DESCRIPTION: cURL libcurl could allow a remote attacker to bypass security...

5.9CVSS7.9AI score0.0181EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.42 views

EulerOS Virtualization 3.0.6.0 : curl (EulerOS-SA-2023-3425)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An improper certificate validation vulnerability exists in curl v8.1.0 in the way it supports matching of wildcard patterns when...

5.9CVSS6.5AI score0.0181EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.40 views

EulerOS Virtualization 2.9.0 : curl (EulerOS-SA-2023-2979)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An improper certificate validation vulnerability exists in curl v8.1.0 in the way it supports matching of wildcard patterns when...

5.9CVSS6.4AI score0.02211EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2023/12/15 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2023-3425)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7.7AI score0.0181EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/11 3:6 p.m.37 views

Security Bulletin: Multiple publicly disclosed libcurl vulnerabilities affect IBM Safer Payments

Summary Libcurl is used by IBM Safer Payments as part of the AVRO support for Kafka. These vulnerabilities have been addressed. Vulnerability Details CVEID:CVE-2023-32001 DESCRIPTION: cURL libcurl could allow a remote authenticated attacker to bypass security restrictions, caused by a race...

5.9CVSS7AI score0.02211EPSS
Exploits2Affected Software1
CBLMariner
CBLMariner
added 2023/11/17 11:23 p.m.21 views

CVE-2023-28321 affecting package mysql for versions less than 8.0.34-1

CVE-2023-28321 affecting package mysql for versions less than 8.0.34-1. An upgraded version of the package is available that resolves this issue...

5.9CVSS6.8AI score0.0181EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2023/11/02 4:9 p.m.66 views

Moderate: Red Hat Security Advisory: curl security update

An update for curl is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

5.9CVSS7AI score0.06208EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/11/02 12:0 a.m.48 views

RHEL 8 : curl (RHSA-2023:6292)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:6292 advisory. The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTT...

5.9CVSS7.7AI score0.06208EPSS
Exploits1References7
Debian
Debian
added 2023/10/11 11:49 a.m.50 views

[SECURITY] [DLA 3613-1] curl security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3613-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort October 11, 2023 https://wiki.debian.org/LTS -...

5.9CVSS8.7AI score0.06208EPSS
Exploits1
CBLMariner
CBLMariner
added 2023/10/11 1:41 a.m.36 views

CVE-2023-28321 affecting package rust for versions less than 1.72.0-2

CVE-2023-28321 affecting package rust for versions less than 1.72.0-2. An upgraded version of the package is available that resolves this issue...

5.9CVSS6.8AI score0.0181EPSS
Exploits1
OpenVAS
OpenVAS
added 2023/09/12 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-6237-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7.3AI score0.02211EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2023/09/11 12:0 a.m.35 views

Ubuntu 16.04 ESM / 18.04 ESM : curl vulnerabilities (USN-6237-3)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6237-3 advisory. USN-6237-1 fixed several vulnerabilities in curl. This update provides the corresponding updates for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, and...

5.9CVSS6.5AI score0.02211EPSS
Exploits2References3
Rows per page
Query Builder