Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2023/03/08 12:0 a.m.84 views

Rocky Linux 8 : curl (RLSA-2023:1140)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:1140 advisory. - An allocation of resources without limits or throttling vulnerability exists in curl v7.88.0 based on the chained HTTP compression algorithms, meaning that a...

6.5CVSS6.7AI score0.01703EPSS
Exploits1References3
Prion
Prion
added 2023/02/23 8:15 p.m.26 views

Design/Logic Flaw

A cleartext transmission of sensitive information vulnerability exists in curl v7.88.0 that could cause HSTS functionality to behave incorrectly when multiple URLs are requested in parallel. Using its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear-text HTTP...

6.4CVSS7.3AI score0.00861EPSS
Exploits0References3Affected Software2
Debian CVE
Debian CVE
added 2023/02/23 12:0 a.m.64 views

CVE-2023-23916

An allocation of resources without limits or throttling vulnerability exists in curl v7.88.0 based on the "chained" HTTP compression algorithms, meaning that a server response can be compressed multiple times and potentially with differentalgorithms. The number of acceptable "links" in this...

6.5CVSS6.8AI score0.01703EPSS
Exploits1
Cvelist
Cvelist
added 2023/02/23 12:0 a.m.40 views

CVE-2023-23915

A cleartext transmission of sensitive information vulnerability exists in curl v7.88.0 that could cause HSTS functionality to behave incorrectly when multiple URLs are requested in parallel. Using its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear-text HTTP...

7.7AI score0.00861EPSS
Exploits0References3
Rows per page
Query Builder