Lucene search
K

16 matches found

Amazon
Amazon
added 2025/06/23 12:0 a.m.6 views

Medium: curl

Issue Overview: When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than otherwise intended. This affects curl using applications that enable HSTS and use URLs with the insecure HTTP:// scheme and perform...

6.5CVSS9.8AI score0.0197EPSS
Exploits1
Amazon
Amazon
added 2025/06/23 12:0 a.m.5 views

Medium: curl

Issue Overview: When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than otherwise intended. This affects curl using applications that enable HSTS and use URLs with the insecure HTTP:// scheme and perform...

6.5CVSS6.7AI score0.0197EPSS
Exploits1
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.2 views

Astra Linux – Vulnerability in curl

When curl is instructed to use HSTS, the expiration time of a subdomain may overwrite the cache entry of the parent domain, causing it to expire sooner or later than intended. This issue affects curl when using applications that enable HSTS and handle URLs with the insecure HTTP:// scheme. It als...

6.5CVSS6.7AI score0.0197EPSS
Exploits1References3
Amazon
Amazon
added 2025/01/09 12:0 a.m.5 views

Medium: curl

Issue Overview: When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than otherwise intended. This affects curl using applications that enable HSTS and use URLs with the insecure HTTP:// scheme and perform...

6.5CVSS6.9AI score0.0197EPSS
Exploits1
OSV
OSV
added 2024/11/22 2:23 p.m.4 views

OESA-2024-2472 curl security update

cURL is a computer software project providing a library libcurl and command-line tool curl for transferring data using various protocols. Security Fixes: When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later th...

6.5CVSS7AI score0.0197EPSS
Exploits1References2
OSV
OSV
added 2024/11/15 12:19 p.m.3 views

OESA-2024-2389 curl security update

cURL is a computer software project providing a library libcurl and command-line tool curl for transferring data using various protocols. Security Fixes: When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later th...

6.5CVSS7AI score0.0197EPSS
Exploits1References2
OSV
OSV
added 2024/11/15 12:19 p.m.3 views

OESA-2024-2388 curl security update

cURL is a computer software project providing a library libcurl and command-line tool curl for transferring data using various protocols. Security Fixes: When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later th...

6.5CVSS7AI score0.0197EPSS
Exploits1References2
OSV
OSV
added 2024/11/06 8:15 a.m.7 views

AZL-52426 CVE-2024-9681 affecting package mysql for versions less than 8.0.40-3

When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than otherwise intended. This affects curl using applications that enable HSTS and use URLs with the insecure HTTP:// scheme and perform transfers with host...

6.5CVSS6.7AI score0.0197EPSS
Exploits1References1
OSV
OSV
added 2024/11/06 8:15 a.m.7 views

AZL-52414 CVE-2024-9681 affecting package mysql for versions less than 8.0.40-5

When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than otherwise intended. This affects curl using applications that enable HSTS and use URLs with the insecure HTTP:// scheme and perform transfers with host...

6.5CVSS6.7AI score0.0197EPSS
Exploits1References1
OSV
OSV
added 2024/11/06 8:15 a.m.5 views

AZL-52405 CVE-2024-9681 affecting package cmake for versions less than 3.30.3-4

When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than otherwise intended. This affects curl using applications that enable HSTS and use URLs with the insecure HTTP:// scheme and perform transfers with host...

6.5CVSS6.7AI score0.0197EPSS
Exploits1References1
NVD
NVD
added 2024/11/06 8:15 a.m.28 views

CVE-2024-9681

When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than otherwise intended. This affects curl using applications that enable HSTS and use URLs with the insecure HTTP:// scheme and perform transfers with host...

6.5CVSS0.0197EPSS
Exploits1References13
OSV
OSV
added 2024/11/06 8:15 a.m.6 views

AZL-52335 CVE-2024-9681 affecting package curl for versions less than 8.8.0-5

When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than otherwise intended. This affects curl using applications that enable HSTS and use URLs with the insecure HTTP:// scheme and perform transfers with host...

6.5CVSS6.7AI score0.0197EPSS
Exploits1References1
OSV
OSV
added 2024/11/06 8:15 a.m.7 views

AZL-52402 CVE-2024-9681 affecting package cmake for versions less than 3.21.4-16

When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than otherwise intended. This affects curl using applications that enable HSTS and use URLs with the insecure HTTP:// scheme and perform transfers with host...

6.5CVSS6.7AI score0.0197EPSS
Exploits1References1
OSV
OSV
added 2024/11/06 8:15 a.m.4 views

ALPINE-CVE-2024-9681

When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than otherwise intended. This affects curl using applications that enable HSTS and use URLs with the insecure HTTP:// scheme and perform transfers with host...

6.5CVSS6.9AI score0.0197EPSS
Exploits1References1
curl security advisories
curl security advisories
added 2024/11/06 8:0 a.m.8 views

HSTS subdomain overwrites parent cache entry

When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than otherwise intended. This affects curl using applications that enable HSTS and use URLs with the insecure HTTP:// scheme and perform transfers with host...

6.5CVSS6.9AI score0.0197EPSS
Exploits1References1Affected Software2
OSV
OSV
added 2024/11/06 12:0 a.m.4 views

UBUNTU-CVE-2024-9681

When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than otherwise intended. This affects curl using applications that enable HSTS and use URLs with the insecure HTTP:// scheme and perform transfers with host...

6.5CVSS7.2AI score0.0197EPSS
Exploits1References5
Rows per page
Query Builder