Lucene search
K

55 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.10 views

Fedora 43 : curl (2026-d0bcb866d0)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-d0bcb866d0 advisory. - fix Out of bounds read for cookie path CVE-2025-9086 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note...

7.5CVSS6.8AI score0.01301EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/18 8:32 p.m.10 views

Security Bulletin: curl vulnerability

Summary Prior versions of Classic Remote Capture may include this curl vulnerability. Vulnerability Details CVEID:CVE-2025-9086 DESCRIPTION: 1. A cookie is set using the secure keyword for https://target 2. curl is redirected to or otherwise made to speak with http://target same hostname, but...

7.5CVSS6.8AI score0.01301EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2026/03/16 12:0 a.m.4 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2026-1421)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS5.8AI score0.01301EPSS
Exploits5References2
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/05 1:53 p.m.13 views

Security Bulletin: Security vulnerabilities found in the Red Hat Universal Minimal Base Image shipped with CICS Transaction Gateway for Multiplatforms

Summary Security vulnerabilities found in the Red Hat Universal Base Image Minimal shipped with CICS Transaction Gateway for Multiplatforms. This fix resolves these vulnerability CVE-2025-9230, CVE-2025-9086, CVE-2025-9230. Vulnerability Details CVEID:CVE-2025-11083 DESCRIPTION: A vulnerability h...

7.8CVSS5.5AI score0.01744EPSS
Exploits2Affected Software1
Rosalinux
Rosalinux
added 2026/02/16 7:14 a.m.7 views

Advisory ROSA-SA-2026-3143

Software: curl 7.61.1 OS: ROSA Virtualization 3.1 unaffected versions = curl-7.61.1-34.0.2.rv31.9 affected versions curl-7.61.1-34.0.2.rv31.9 CVE-ID: CVE-2025-9086 BDU-ID: 2025-12599 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the cURL command line utility is related to reading data beyond buffe...

7.5CVSS5.8AI score0.01301EPSS
Exploits1
Rosalinux
Rosalinux
added 2026/02/16 7:8 a.m.8 views

Advisory ROSA-SA-2026-3138

Software: curl 7.61.1 OS: ROSA Virtualization 3.0 unaffected versions = curl-7.61.1-34.0.2.rv30.9 affected versions curl-7.61.1-34.0.2.rv30.9 CVE-ID: CVE-2025-9086 BDU-ID: 2025-12599 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the cURL command line utility is related to reading data beyond buffe...

7.5CVSS5.8AI score0.01301EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/02/10 12:0 a.m.5 views

Siemens SCALANCE and RUGGEDCOM Out-of-bounds Read (CVE-2025-9086)

A cookie is set using the secure keyword for https://target 2. curl is redirected to or otherwise made to speak with http://target same hostname, but using clear text HTTP using the same cookie set 3. The same cookie name is set - but with just a slash as path path='/'. Since this site is not...

7.5CVSS6.7AI score0.01301EPSS
Exploits1References4
OSV
OSV
added 2026/02/06 9:39 a.m.5 views

CLSA-2026-1770370767 curl: Fix of CVE-2025-9086

CVE-2025-9086: cookie: don't treat the leading slash as trailing...

7.5CVSS6.6AI score0.01301EPSS
Exploits1References1
OSV
OSV
added 2026/02/06 9:8 a.m.7 views

RLSA-2026:1825 Moderate: curl security update

The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Security Fixes: curl: libcurl: Curl out of bounds read for cookie path CVE-2025-9086 For more details about the security issues, including...

5.3CVSS6.8AI score0.01301EPSS
Exploits1References2
Rockylinux
Rockylinux
added 2026/02/06 9:8 a.m.6 views

curl security update

An update is available for curl. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The curl packages provide the libcurl library and the curl utility for...

7.5CVSS6.8AI score0.01301EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/02/06 12:0 a.m.4 views

RockyLinux 10 : curl (RLSA-2026:1825)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:1825 advisory. curl: libcurl: Curl out of bounds read for cookie path CVE-2025-9086 Tenable has extracted the preceding description block directly from the RockyLinux security...

7.5CVSS6.8AI score0.01301EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/02/05 12:0 a.m.6 views

AlmaLinux 10 : curl (ALSA-2026:1825)

The remote AlmaLinux 10 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2026:1825 advisory. curl: libcurl: Curl out of bounds read for cookie path CVE-2025-9086 Tenable has extracted the preceding description block directly from the AlmaLinux security...

7.5CVSS5.5AI score0.01301EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2026/02/03 3:41 p.m.7 views

Moderate: Red Hat Security Advisory: curl security update

An update for curl is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS6.5AI score0.01301EPSS
Exploits1References2
Oracle linux
Oracle linux
added 2026/02/03 12:0 a.m.7 views

curl security update

8.12.1-2.el101.2 - openssl: respect system crypto policy for TLS max version RHEL-128923 8.12.1-2.el101.1 - cookie: don't treat the leading slash as trailing CVE-2025-9086 Resolves: RHEL-122689...

7.5CVSS7.5AI score0.01301EPSS
Exploits1
OSV
OSV
added 2026/02/03 12:0 a.m.7 views

ALSA-2026:1825 Moderate: curl security update

The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Security Fixes: curl: libcurl: Curl out of bounds read for cookie path CVE-2025-9086 For more details about the security issues, including...

7.5CVSS6.8AI score0.01301EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2026/02/02 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2026-1109)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.01301EPSS
Exploits3References2
Rockylinux
Rockylinux
added 2026/01/30 10:9 p.m.6 views

curl security update

An update is available for curl. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The curl packages provide the libcurl library and the curl utility for downloadi...

7.5CVSS6AI score0.01301EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/01/30 12:0 a.m.4 views

AlmaLinux 9 : curl (ALSA-2026:1350)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2026:1350 advisory. curl: libcurl: Curl out of bounds read for cookie path CVE-2025-9086 Tenable has extracted the preceding description block directly from the AlmaLinux security...

7.5CVSS5.9AI score0.01301EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.11 views

Oracle Linux 9 : curl (ELSA-2026-1350)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-1350 advisory. 7.76.1-35.el97.3 - http: fix crash in rate-limited upload RHEL-129493 7.76.1-35.el97.2 - openssl: respect system crypto policy for TLS max version RHEL-128921...

7.5CVSS6AI score0.01301EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.6 views

RHEL 9 : curl (RHSA-2026:1350)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:1350 advisory. The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, a...

7.5CVSS6AI score0.01301EPSS
Exploits1References6
Rows per page
Query Builder