Lucene search
+L

30 matches found

susecve
susecve
added 2023/02/15 4:20 a.m.3 views

SUSE CVE-2018-1000300

curl version curl 7.54.1 to and including curl 7.59.0 contains a CWE-122: Heap-based Buffer Overflow vulnerability in denial of service and more that can result in curl might overflow a heap based memory buffer when closing down an FTP connection with very long server command replies.. This...

9.8CVSS9.8AI score0.04862EPSS
Exploits0References4
ibm
ibm
added 2019/12/20 1:58 p.m.43 views

Security Bulletin: Multiple Vulnerabilities in libCurl affects IBM Watson Studio Local

Summary Multiple Vulnerabilities in libCurl affects IBM Watson Studio Local Vulnerability Details CVEID: CVE-2019-5435 DESCRIPTION: An integer overflow in curl's URL API results in a buffer overflow in libcurl 7.62.0 to and including 7.64.1. CVSS Base score: 7.3 CVSS Temporal Score: See:...

10CVSS0.9AI score0.49739EPSS
Exploits3Affected Software1
nessus
nessus
added 2019/04/16 12:0 a.m.48 views

Oracle Fusion Middleware Oracle HTTP Server Multiple Vulnerabilities (October 2018 CPU)

The version of Oracle HTTP Server installed on the remote host is affected by vulnerabilities as noted in the October 2018 CPU advisory: - A vulnerability exists in the Oracle HTTP Server component of Oracle Fusion Middleware subcomponent: Web Listener curl. The affected version is 12.2.1.3. This...

9.8CVSS7.1AI score0.12058EPSS
Exploits0References6
nessus
nessus
added 2019/03/27 12:0 a.m.32 views

openSUSE Security Update : curl (openSUSE-2019-435)

This update for curl to version 7.60.0 fixes the following issues : These security issues were fixed : - CVE-2018-1000300: Prevent heap-based buffer overflow when closing down an FTP connection with very long server command replies bsc1092094. - CVE-2018-1000301: Prevent buffer over-read that cou...

9.8CVSS7.8AI score0.06003EPSS
Exploits0References4
nessus
nessus
added 2019/02/07 12:0 a.m.22 views

Photon OS 2.0: Curl PHSA-2018-2.0-0068

An update of the curl package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-2.0-0068. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid121963;...

9.8CVSS8.3AI score0.06003EPSS
Exploits0References3
nessus
nessus
added 2019/01/03 12:0 a.m.26 views

Fedora 28 : curl (2018-fa01002d7e)

fix FTP shutdown response buffer overflow CVE-2018-1000300 - fix RTSP bad headers buffer over-read CVE-2018-1000301 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and...

9.8CVSS7.7AI score0.06003EPSS
Exploits0References3
openvas
openvas
added 2018/11/08 12:0 a.m.32 views

Fedora Update for curl FEDORA-2018-fdc4ca8675

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8AI score0.11115EPSS
Exploits1References2
openvas
openvas
added 2018/10/26 12:0 a.m.39 views

openSUSE: Security Advisory for curl (openSUSE-SU-2018:1624-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.2AI score0.06003EPSS
Exploits0References2
openvas
openvas
added 2018/09/22 12:0 a.m.30 views

Fedora Update for curl FEDORA-2018-ba443bcb6d

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.7AI score0.12058EPSS
Exploits0References2
nessus
nessus
added 2018/07/25 12:0 a.m.41 views

Oracle Secure Global Desktop Multiple Vulnerabilities (July 2018 CPU)

The version of Oracle Secure Global Desktop installed on the remote host is 5.3 / 5.4 and is missing a security patch from the July 2018 Critical Patch Update CPU. It is, therefore, affected by multiple vulnerabilities: - curl version curl 7.54.1 to and including curl 7.59.0 contains a Heap-based...

9.8CVSS6.4AI score0.19295EPSS
Exploits2References11
openvas
openvas
added 2018/07/18 12:0 a.m.35 views

Fedora Update for curl FEDORA-2018-57779d51c1

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.9AI score0.06433EPSS
Exploits1References2
nessus
nessus
added 2018/06/12 12:0 a.m.56 views

Amazon Linux 2 : curl (ALAS-2018-1029)

Curl version curl 7.54.1 to and including curl 7.59.0 contains a CWE-122: Heap-based Buffer Overflow vulnerability in denial of service and more that can result in curl might overflow a heap based memory buffer when closing down an FTP connection with very long server command...

9.8CVSS7.8AI score0.06003EPSS
Exploits0References3
nessus
nessus
added 2018/06/11 12:0 a.m.38 views

openSUSE Security Update : curl (openSUSE-2018-589)

This update for curl to version 7.60.0 fixes the following issues : These security issues were fixed : - CVE-2018-1000300: Prevent heap-based buffer overflow when closing down an FTP connection with very long server command replies bsc1092094. - CVE-2018-1000301: Prevent buffer over-read that cou...

9.8CVSS7.8AI score0.06003EPSS
Exploits0References4
amazon
amazon
added 2018/06/07 12:0 a.m.31 views

Important: curl

Issue Overview: Curl version curl 7.54.1 to and including curl 7.59.0 contains a CWE-122: Heap-based Buffer Overflow vulnerability in denial of service and more that can result in curl might overflow a heap based memory buffer when closing down an FTP connection with very long server command...

9.8CVSS9.8AI score0.06003EPSS
Exploits0
cloudfoundry
cloudfoundry
added 2018/06/05 12:0 a.m.43 views

USN-3648-1: curl vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Description Dario Weisser discovered that curl incorrectly handled long FTP server command replies. If a user or automated system were tricked into connecting to a malicious FTP server, a remote attacker could use th...

9.8CVSS9.2AI score0.06003EPSS
Exploits0
osv
osv
added 2018/05/24 1:29 p.m.25 views

CVE-2018-1000300

curl version curl 7.54.1 to and including curl 7.59.0 contains a CWE-122: Heap-based Buffer Overflow vulnerability in denial of service and more that can result in curl might overflow a heap based memory buffer when closing down an FTP connection with very long server command replies.. This...

9.8CVSS9.9AI score0.04862EPSS
Exploits0References8
cvelist
cvelist
added 2018/05/24 1:0 p.m.17 views

CVE-2018-1000300

curl version curl 7.54.1 to and including curl 7.59.0 contains a CWE-122: Heap-based Buffer Overflow vulnerability in denial of service and more that can result in curl might overflow a heap based memory buffer when closing down an FTP connection with very long server command replies.. This...

7.8AI score0.04862EPSS
Exploits0References8
cve
cve
added 2018/05/24 1:0 p.m.171 views

CVE-2018-1000300

Vulnerability: curl versions 7.54.1 through 7.59.0 contain a CWE-122 heap-based buffer overflow in the FTP connection shutdown path (very long server command replies), leading to potential denial of service and other impacts. Affected: curl 7.54.1–7.59.0. Root cause: heap buffer overflow during F...

9.8CVSS7.6AI score0.04862EPSS
Exploits0References8Affected Software1
debiancve
debiancve
added 2018/05/24 1:0 p.m.46 views

CVE-2018-1000300

curl version curl 7.54.1 to and including curl 7.59.0 contains a CWE-122: Heap-based Buffer Overflow vulnerability in denial of service and more that can result in curl might overflow a heap based memory buffer when closing down an FTP connection with very long server command replies.. This...

9.8CVSS9.8AI score0.04862EPSS
Exploits0
nessus
nessus
added 2018/05/24 12:0 a.m.40 views

Fedora 27 : curl (2018-9dc7338487)

fix FTP shutdown response buffer overflow CVE-2018-1000300 - fix RTSP bad headers buffer over-read CVE-2018-1000301 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and...

9.8CVSS7.7AI score0.06003EPSS
Exploits0References3
Rows per page
Query Builder