CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SUSE CVE•added 2024/07/26 3:25 a.m.•1 views

SUSE CVE-2024-6874

libcurl's URL API function curlurlget offers punycode conversions, to and from IDN. Asking to convert a name that is exactly 256 bytes, libcurl ends up reading outside of a stack based buffer when built to use the macidn IDN backend. The conversion function then fills up the provided buffer exact...

5.3CVSS9.1AI score0.0099EPSS

Exploits1References4

RedhatCVE•added 2024/07/25 6:41 a.m.•19 views

CVE-2024-6874

A buffer overread vulnerability was found in Curl's URL API function curlurlget. This issue allows a remote attacker to obtain sensitive information due to a punycode buffer overread flaw. By sending a specially crafted request, an attacker can gain sensitive information and potentially launch...

5.3CVSS6.4AI score0.0099EPSS

Exploits1References6

OSV•added 2024/07/24 8:15 a.m.•2 views

AZL-49664 CVE-2024-6874 affecting package cmake for versions less than 3.30.3-2

OSV•added 2024/07/24 8:15 a.m.•3 views

AZL-47046 CVE-2024-6874 affecting package curl for versions less than 8.8.0-1

NVD•added 2024/07/24 8:15 a.m.•33 views

CVE-2024-6874

4.3CVSS0.0099EPSS

Exploits1References5

OSV•added 2024/07/24 8:15 a.m.•1 views

ALPINE-CVE-2024-6874

4.3CVSS7.1AI score0.0099EPSS

OSV•added 2024/07/24 8:15 a.m.•1 views

DEBIAN-CVE-2024-6874

4.3CVSS7AI score0.0099EPSS

OSV•added 2024/07/24 8:15 a.m.•2 views

AZL-47020 CVE-2024-6874 affecting package curl for versions less than 8.8.0-1

OSV•added 2024/07/24 8:15 a.m.•18 views

CVE-2024-6874

4.3CVSS6.8AI score0.0099EPSS

Exploits1References5

OSV•added 2024/07/24 8:0 a.m.•20 views

CURL-CVE-2024-6874 macidn punycode buffer overread

4.3CVSS6.9AI score0.0099EPSS

Vulnrichment•added 2024/07/24 7:36 a.m.•22 views

CVE-2024-6874 macidn punycode buffer overread

6.5AI score0.0099EPSS

Exploits1References4

CVE•added 2024/07/24 7:36 a.m.•164 views

CVE-2024-6874

CVE-2024-6874 affects libcurl’s URL API function curl_url_get() when built with the macidn IDN backend. If the input name is exactly 256 bytes, the function may read past a stack-based buffer, and when the conversion fills the provided buffer, it does not null-terminate the string, potentially ca...

4.3CVSS6.6AI score0.0099EPSS

Exploits1References5Affected Software1

Cvelist•added 2024/07/24 7:36 a.m.•28 views

CVE-2024-6874 macidn punycode buffer overread

0.0099EPSS

Exploits1References4

AlpineLinux•added 2024/07/24 7:36 a.m.•22 views

CVE-2024-6874

Hacker One•added 2024/07/24 7:19 a.m.•13 views

Internet Bug Bounty: curl: stack-buffer overread during punycode conversions

The vulnerability in libcurl's URL API function curlurlget was discovered, where it performed punycode conversions. When converting a 256-byte domain name, the function read outside of a stack-based buffer, potentially leaking adjacent stack memory as part of the converted string. The flaw was...

4.3CVSS4.4AI score0.0099EPSS

UbuntuCve•added 2024/07/24 12:0 a.m.•20 views

CVE-2024-6874

4.3CVSS6.9AI score0.0099EPSS

Exploits1References2

Hacker One•added 2024/07/16 2:7 a.m.•60 views

curl: CVE-2024-6874: macidn punycode buffer overread

The libcurl at commit 58772b0e082eda333e0a5fc8fb0bc7f17a3cd99c contained a stack-buffer overread in the function macidntoascii that could be triggered when the host of a URL was converted to punycode. The root cause was in the function uidnanameToASCIIUTF8, which left the output buffer unterminat...

4.3CVSS4.7AI score0.0099EPSS