Lucene search
K

35 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2022/02/23 5:14 p.m.68 views

Security Bulletin: Network Intrusion Prevention System is affected by curl and php5 vulnerabilities (CVE-2013-2174, CVE-2014-0015, CVE-2014-0138, CVE-2014-0139, CVE-2013-4248, CVE-2013-6420, CVE-2014-2497, CVE-2014-4049)

Summary Security vulnerabilities have been discovered in curl and php5 that are used in IBM Security Network Intrusion Prevention System. Vulnerability Details CVE-ID: CVE-2013-2174 DESCRIPTION: cURL/libcURL is vulnerable to a heap-based buffer overflow, caused by improper bounds checking by the...

7.5CVSS8.5AI score0.35635EPSS
Exploits14Affected Software1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2013:1166-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS9.6AI score0.11118EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2013:1166-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS9.6AI score0.11118EPSS
Exploits2References2
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/31 1:35 a.m.56 views

Security Bulletin: Security vulnerabilities in Open SSL, OpenSSH and curl affect the Integrated Management Module II (IMM2)

Summary Security vulnerabilities in Open SSL, OpenSSH and curl affect the Integrated Management Module II IMM2. Vulnerability Details Abstract Security vulnerabilities in Open SSL, OpenSSH and curl affect the Integrated Management Module II IMM2. Vulnerability Details CVE-ID: CVE-2014-2653...

6.8CVSS0.8AI score0.51436EPSS
Exploits6
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/31 1:35 a.m.35 views

Security Bulletin: Vulnerabilities in cURL affect System x Integrated Management Module (IMM) (CVE-2013-2174, CVE-2014-0015, CVE-2014-0138, CVE-2014-0139)

Summary Several cURL vulnerabilities were disclosed. This bulletin addresses these cURL vulnerabilities that affect IMM. Vulnerability Details Abstract Several cURL vulnerabilities were disclosed. This bulletin addresses these cURL vulnerabilities that affect IMM. Content Vulnerability Details:...

6.8CVSS0.6AI score0.11118EPSS
Exploits3
OpenVAS
OpenVAS
added 2015/09/29 12:0 a.m.39 views

Gentoo Security Advisory GLSA 201401-14

Gentoo Linux Local Security Checks GLSA 201401-14 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

7.5CVSS6.2AI score0.22913EPSS
Exploits9References1
OpenVAS
OpenVAS
added 2015/01/05 12:0 a.m.35 views

Fedora Update for curl FEDORA-2014-16690

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.9AI score0.11118EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2014/10/09 12:0 a.m.27 views

Fedora Update for curl FEDORA-2014-10714

Check the version of curl SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868370";...

6.8CVSS7.3AI score0.11118EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2014/04/03 12:0 a.m.32 views

Fedora Update for curl FEDORA-2014-4449

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8AI score
Exploits0References2
OpenVAS
OpenVAS
added 2014/02/17 12:0 a.m.27 views

Fedora Update for curl FEDORA-2014-1864

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.7AI score
Exploits0References2
NVD
NVD
added 2013/07/31 1:20 p.m.15 views

CVE-2013-2174

Heap-based buffer overflow in the curleasyunescape function in lib/escape.c in cURL and libcurl 7.7 through 7.30.0 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted string ending in a "%" percent character...

6.8CVSS7.7AI score0.11118EPSS
Exploits2References9
CVE
CVE
added 2013/07/31 10:0 a.m.130 views

CVE-2013-2174

CVE-2013-2174 : A heap-based buffer overflow in curl_easy_unescape() (lib/escape.c) in curl/libcurl, affecting 7.7–7.30.0, can cause remote crashes or arbitrary code execution via a crafted string ending in “%”. Connected IBM PSIRTs/IMM advisories corroborate the issue and map affected IMM firmwa...

6.8CVSS6.6AI score0.11118EPSS
Exploits2References9Affected Software1
Tenable Nessus
Tenable Nessus
added 2013/07/18 12:0 a.m.35 views

SuSE 11.3 Security Update : curl (SAT Patch Number 7932)

This update of curl fixes a security issue in libcurl URL buffer decoding. bnc824517 / CVE-2013-2174 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyright C Novell,...

6.8CVSS7AI score0.11118EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2013/07/16 5:3 p.m.57 views

Important: Red Hat Security Advisory: rhev-hypervisor6 security and bug fix update

An updated rhev-hypervisor6 package that fixes one security issue and various bugs is now available. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.2CVSS6.8AI score0.11118EPSS
Exploits8References6
OpenVAS
OpenVAS
added 2013/07/16 12:0 a.m.35 views

Fedora Update for curl FEDORA-2013-11574

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.22913EPSS
Exploits9References2
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.31 views

Fedora 18 : curl-7.27.0-11.fc18 (2013-11574)

CVE-2013-2174 - fix heap-based buffer overflow in curleasyunescape Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

6.8CVSS7.3AI score0.11118EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.31 views

Oracle Linux 5 / 6 : curl (ELSA-2013-0983)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2013-0983 advisory. 7.19.7-37 - fix heap-based buffer overflow in curleasyunescape CVE-2013-2174 Tenable has extracted the preceding description block directly from the Oracle...

6.8CVSS7.4AI score0.11118EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2013/07/11 12:0 a.m.32 views

SuSE 10 Security Update : curl (ZYPP Patch Number 8614)

This update of curl fixes several security issues. - libcurl URL decode buffer boundary flaw bnc824517 / CVE-2013-2174 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

6.8CVSS7.2AI score0.11118EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2013/07/10 12:0 a.m.30 views

SuSE 10 Security Update : libcurl4 (ZYPP Patch Number 8618) (BEAST)

This update of curl fixes several security issues : - libcurl URL decode buffer boundary flaw. bnc824517 / CVE-2013-2174 - cookie domain tailmatch. bnc814655 / CVE-2013-1944 - curl sets SSLOPALL. bnc742306 / CVE-2011-3389 - When SSLOPNETSCAPEREUSECIPHERCHANGEBUG is enabled, does not properly...

6.8CVSS7.2AI score0.73327EPSS
Exploits7References8
Tenable Nessus
Tenable Nessus
added 2013/07/10 12:0 a.m.23 views

SuSE 11.2 Security Update : curl (SAT Patch Number 7867)

This update of curl fixes several security issues : - libcurl URL decode buffer boundary flaw bnc824517 / CVE-2013-2174 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is...

6.8CVSS7.2AI score0.11118EPSS
Exploits2References3
Rows per page
Query Builder