CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10019 matches found

Tenable Nessus•added 2026/06/03 12:0 a.m.•4 views

Photon OS 5.0: Curl PHSA-2026-5.0-0856

An update of the curl package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0856. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

5.3CVSS5.7AI score0.00104EPSS

Exploits1References2

Hacker One•added 2026/06/02 3:56 p.m.•21 views

curl: PRE_PROXY change leaks stale Proxy Digest state across proxy-chain boundary

Summary After a Digest-authenticated HTTP proxy transfer, changing only CURLOPTPREPROXY on the same libcurl easy handle does not clear stale proxy Digest/auth state. If the new SOCKS pre-proxy resolves the same HTTP proxy hostname to a different proxy endpoint, the second proxy receives a...

5.8AI score

Exploits0

Hacker One•added 2026/06/01 3:28 p.m.•14 views

curl: libcurl 8.20.0 ignores HTTP Digest domain protection space and preemptively leaks Digest auth outside the declared scope

Summary: libcurl 8.20.0 ignores the server-declared HTTP Digest domain protection space for origin authentication and reuses stored Digest state too broadly on the same easy handle. After a successful Digest-authenticated request, a later request on the same easy handle can receive a preemptive...

5.8AI score

Exploits0

Hacker One•added 2026/05/31 5:50 p.m.•14 views

curl: curl/libcurl 8.20.0 NOPROXY bypass via uppercase-hex IPv4 aliases leaks off-proxy Basic credentials to the configured proxy

Summary: curl/libcurl 8.20.0 fails to enforce CURLOPTNOPROXY, --noproxy, and NOPROXY consistently for uppercase-hex IPv4 aliases such as 0X7f.1 on glibc-based systems that accept these legacy numeric IPv4 forms. When a canonical IP literal is excluded from proxying, curl sends the canonical form...

5.8AI score

Exploits0

SUSE CVE•added 2026/05/30 1:59 a.m.•8 views

SUSE CVE-2026-49129

Music Player Daemon MPD before version 0.24.11 contains a server-side request forgery vulnerability in CurlInputPlugin where CURLOPTFOLLOWLOCATION is set without CURLOPTREDIRPROTOCOLSSTR, allowing unauthenticated attackers to bypass the http/https scheme restriction by causing a malicious HTTP...

6.9CVSS5.8AI score0.00059EPSS

Exploits0References3

Packet Storm News•added 2026/05/30 12:0 a.m.•6 views

NeuroLog: Reasoning You Can Audit -- Neuro-Symbolic Vulnerability Discovery Via LLM Facts, Datalog, and SMT

Vulnerability discovery on C/C++ source asks the analyst to choose between heavyweight static analysers, which need a working build before a single query runs, and free-form LLMs, which read source readily but invent details and lose track of cross-function dataflow on real codebases. We present...

9.8CVSS7.1AI score0.2625EPSS

Exploits6

RedhatCVE•added 2026/05/29 8:13 p.m.•8 views

CVE-2026-49129

6.9CVSS5.8AI score0.00059EPSS

Exploits0References1

Hacker One•added 2026/05/29 9:18 a.m.•16 views

curl: Low priority HSTS bypass in curl_easy_duphandle()

Summary: curleasyduphandle creates a fresh HSTS store for the cloned handle and populates it from the configured files and callbacks, but never copies entries acquired from Strict-Transport-Security response headers during the parent's lifetime. This means the client using a cloned handle may...

5.8AI score

Exploits0

SUSE CVE•added 2026/05/29 1:28 a.m.•7 views

SUSE CVE-2025-8030

Insufficient escaping in the “Copy as cURL” feature could potentially be used to trick a user into executing unexpected code. This vulnerability was fixed in Firefox 141, Firefox ESR 128.13, Firefox ESR 140.1, Thunderbird 141, Thunderbird 128.13, and Thunderbird 140.1...

5.3CVSS7.2AI score0.00277EPSS

Exploits0References11

SUSE CVE•added 2026/05/29 1:27 a.m.•11 views

SUSE CVE-2025-11713

Insufficient escaping in the “Copy as cURL” feature could have been used to trick a user into executing unexpected code on Windows. This did not affect the application when running on other operating systems. This vulnerability was fixed in Firefox 144, Firefox ESR 140.4, Thunderbird 144, and...

8.1CVSS5.9AI score0.00041EPSS

Exploits0References7

Redos•added 2026/05/29 12:0 a.m.•10 views

ROS-20260529-73-0020

The vulnerability of the cURL command-line utility lies in the use of an uninitialized resource. Exploiting this vulnerability allows a remote attacker to gain access to confidential data...

5.3CVSS5.8AI score0.00233EPSS

Exploits1

Redos•added 2026/05/29 12:0 a.m.•8 views

ROS-20260529-73-0017

The vulnerability of the software for interacting with servers via CURL is related to the execution of operations within the acceptable data buffer limits. Exploiting this vulnerability allows a malicious actor to cause service failures remotely...

7.5CVSS7.3AI score0.00742EPSS

Exploits1

Redos•added 2026/05/29 12:0 a.m.•8 views

ROS-20260529-73-0018

The vulnerability of the sscanf function in the libcurl library, a software tool for interacting with servers via CURL, is related to the use of uninitialized resources. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

3.1CVSS5.8AI score0.00126EPSS

Exploits1

Tenable Nessus•added 2026/05/29 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-49129

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Music Player Daemon MPD before version 0.24.11 contains a server-side request forgery vulnerability in CurlInputPlugin where CURLOPTFOLLOWLOCATION is set withou...

6.9CVSS5.6AI score0.00059EPSS

Exploits0References3