Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.7 views

MiracleLinux 8 : curl-7.61.1-22.el8.3 (AXSA:2022-3782:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3782:01 advisory. curl: OAUTH2 bearer bypass in connection re-use CVE-2022-22576 curl: credential leak on redirect CVE-2022-27774 curl: auth/cookie leak on redirect...

8.1CVSS6.8AI score0.03425EPSS
Exploits4References5
OpenVAS
OpenVAS
added 2022/03/25 12:0 a.m.17 views

TeamViewer Connection Reuse Vulnerability (TV-2022-1001) - Linux

TeamViewer is prone to a connection reuse vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...

6.3CVSS4.6AI score0.00201EPSS
Exploits0References1
OSV
OSV
added 2021/03/10 11:15 p.m.3 views

UBUNTU-CVE-2020-15260

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In version 2.10 and earlier, PJSIP transport can be reused if they have the same IP address + port + protocol. However, this is...

6.8CVSS7.3AI score0.00991EPSS
Exploits0References6
Cvelist
Cvelist
added 2018/08/01 6:0 a.m.27 views

CVE-2016-8616

A flaw was found in curl before version 7.51.0 When re-using a connection, curl was doing case insensitive comparisons of user name and password with the existing connections. This means that if an unused connection with proper credentials exists for a protocol that has connection-scoped...

3.7CVSS6.5AI score0.03472EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2016/08/03 12:0 a.m.32 views

CVE-2016-5420

curl and libcurl before 7.50.1 do not check the client certificate when choosing the TLS connection to reuse, which might allow remote attackers to hijack the authentication of the connection by leveraging a previously created connection with a different client certificate...

7.5CVSS6.8AI score0.14596EPSS
Exploits0References4
OSV
OSV
added 2015/04/22 8:0 a.m.13 views

CURL-CVE-2015-3143 Reusing authenticated connection when unauthenticated

libcurl keeps a pool of its last few connections around after use to facilitate easy, convenient and completely transparent connection reuse for applications. When doing HTTP requests NTLM authenticated, the entire connection becomes authenticated and not only the specific HTTP request which is...

5CVSS7AI score0.16222EPSS
Exploits0
Rows per page
Query Builder