Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/16 12:0 a.m.13 views

Amazon Linux 2023 : curl, curl-minimal, libcurl (ALAS2023-2026-1699)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1699 advisory. When doing a second SMB request to the same host again, curl would wrongly use a data pointer pointing into already freed memory. CVE-2026-3805 Tenable has extracted the preceding description block...

7.5CVSS7.1AI score0.00715EPSS
Exploits2References4
Amazon
Amazon
added 2026/05/15 12:0 a.m.19 views

Medium: curl

Issue Overview: When doing a second SMB request to the same host again, curl would wrongly use a data pointer pointing into already freed memory. CVE-2026-3805 Affected Packages: curl Issue Correction: Run dnf update curl --releasever 2023.11.20260514 or dnf update --advisory ALAS2023-2026-1699...

7.5CVSS7.1AI score0.00715EPSS
Exploits2
OpenVAS
OpenVAS
added 2026/04/03 12:0 a.m.10 views

SUSE: Security Advisory (SUSE-SU-2026:20918-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS5.9AI score0.00715EPSS
Exploits4References7
OPENSUSE Linux
OPENSUSE Linux
added 2026/03/18 12:0 a.m.4 views

curl-8.19.0-1.1 on GA media (moderate)

curl-8.19.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10371-1 Rating: moderate Cross-References: CVE-2026-1965 CVE-2026-3783 CVE-2026-3784 CVE-2026-3805 CVSS scores: CVE-2026-1965 SUSE : 7.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N CVE-2026-1965 SUSE : 6.9...

7.5CVSS5.8AI score0.00715EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2026/03/17 12:0 a.m.27 views

Curl 8.13.0 < 8.19.0 Use After Free in SMB Connection

The version of curl installed on the remote host is 8.13.0 prior to 8.19.0 . It is, therefore, affected by a use after free in SMB connection vulnerability: - When doing a second SMB request to the same host again, curl would wrongly use a data pointer pointing into already freed memory...

7.5CVSS7.2AI score0.00715EPSS
Exploits2References2
OSV
OSV
added 2026/03/13 6:8 a.m.3 views

BELL-CVE-2026-3805

Bulletin has no description...

7.5CVSS5.7AI score0.00715EPSS
Exploits2References1
Tenable Nessus
Tenable Nessus
added 2026/03/13 12:0 a.m.4 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 : curl vulnerabilities (USN-8084-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8084-1 advisory. Zhicheng Chen discovered that curl could incorrectly reuse the wrong connection for Negotiate- authenticated HTTP or HTTPS requests...

7.5CVSS7.1AI score0.00715EPSS
Exploits5References6
RedhatCVE
RedhatCVE
added 2026/03/11 4:17 p.m.4 views

CVE-2026-3805

A flaw was found in curl. When handling a second Server Message Block SMB request to the same host, curl incorrectly accesses memory that has already been freed. This memory corruption vulnerability, known as a use-after-free, could allow a remote attacker to potentially execute arbitrary code or...

7.5CVSS6AI score0.00715EPSS
Exploits2References7
CVE
CVE
added 2026/03/11 10:9 a.m.57 views

CVE-2026-3805

CVE-2026-3805 describes a heap-use-after-free in curl’s SMB connection reuse. During needle-based connection reuse, curl sets req-&gt;path to point inside the connection-owned smbc-&gt;share memory. When the needle is freed, smbc-&gt;share is freed as well, but req-&gt;path on the easy handle rem...

7.5CVSS5.8AI score0.00715EPSS
Exploits2References4Affected Software1
OSV
OSV
added 2026/03/11 10:9 a.m.6 views

CVE-2026-3805 use after free in SMB connection reuse

When doing a second SMB request to the same host again, curl would wrongly use a data pointer pointing into already freed memory...

7.5CVSS7.1AI score0.00715EPSS
Exploits2References6
OSV
OSV
added 2026/03/11 8:0 a.m.7 views

CURL-CVE-2026-3805 use after free in SMB connection reuse

When doing a second SMB request to the same host again, curl would wrongly use a data pointer pointing into already freed memory...

7.5CVSS5.8AI score0.00715EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2026/03/11 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-3805

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When doing a second SMB request to the same host again, curl would wrongly use a data pointer pointing into already freed memory. CVE-2026-3805 Note that Nessus...

7.5CVSS7.1AI score0.00715EPSS
Exploits2References3
Rows per page
Query Builder