Lucene search
+L

33 matches found

Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.10 views

Alibaba Cloud Linux 3 : 0070: curl (ALINUX3-SA-2021:0070)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2021:0070 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-22922: When curl is instructed to...

6.5CVSS6.3AI score0.0627EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2021-22923

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When curl is instructed to get content using the metalink feature, and a user name and password are used to download the metalink XML file, those same credentia...

5.3CVSS6.4AI score0.01843EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/12/12 4:58 p.m.38 views

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data v5.0.3 is vulnerable to multiple Operator package issues

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data v5.0.3 is vulnerable to multiple Operator package issues.. We have performed updates to the Operators used by our Speech Services. The following vulnerabilities have been addressed in this update. Please read the details for...

8.1CVSS9.8AI score0.60122EPSS
Exploits10Affected Software1
OSV
OSV
added 2023/08/31 12:14 p.m.5 views

BELL-CVE-2021-22923 CVE-2021-22923 does not affect BellSoft software

Bulletin has no description...

5.3CVSS7.1AI score0.01843EPSS
Exploits1References1
F5 Networks
F5 Networks
added 2023/02/21 7:53 p.m.31 views

K54308152: cURL vulnerability CVE-2021-22923

Security Advisory Description When curl is instructed to get content using the metalink feature, and a user name and password are used to download the metalink XML file, those same credentials are then subsequently passed on to each of the servers from which curl will download or try to download...

5.3CVSS6.6AI score0.01843EPSS
Exploits1
CBLMariner
CBLMariner
added 2022/04/09 6:51 a.m.18 views

CVE-2021-22923 affecting package curl for versions less than 7.76.0-5

CVE-2021-22923 affecting package curl for versions less than 7.76.0-5. A patched version of the package is available...

5.3CVSS6.7AI score0.01843EPSS
Exploits1
OpenVAS
OpenVAS
added 2022/02/13 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2022-1062)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6AI score0.0627EPSS
Exploits7References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.28 views

Mageia: Security Advisory (MGASA-2021-0384)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.0627EPSS
Exploits4References8
OpenVAS
OpenVAS
added 2021/11/17 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2021-2769)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.1AI score0.0982EPSS
Exploits5References2
Oracle linux
Oracle linux
added 2021/11/16 12:0 a.m.58 views

curl security and bug fix update

7.61.1-22 - fix STARTTLS protocol injection via MITM CVE-2021-22947 - fix protocol downgrade required TLS bypass CVE-2021-22946 7.61.1-21 - fix TELNET stack contents disclosure again CVE-2021-22925 - fix TELNET stack contents disclosure CVE-2021-22898 - fix bad connection reuse due to flawed path...

7.5CVSS6.5AI score0.0627EPSS
Exploits8
OpenVAS
OpenVAS
added 2021/11/12 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2021-2707)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.2AI score0.0982EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2021/10/22 12:0 a.m.31 views

Oracle MySQL Server <= 5.7.35 / 8.0 <= 8.0.26 Security Update (cpuoct2021) - Linux

Oracle MySQL Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; if...

9.8CVSS7.4AI score0.87816EPSS
Exploits9References2
RedHat Linux
RedHat Linux
added 2021/10/19 7:18 a.m.63 views

Moderate: Red Hat Security Advisory: curl security update

An update for curl is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

6.5CVSS6.5AI score0.04313EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2021/09/22 12:0 a.m.39 views

CentOS 8 : curl (CESA-2021:3582)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:3582 advisory. - curl: Content not matching hash in Metalink is not being discarded CVE-2021-22922 - curl: Metalink download sends credentials CVE-2021-22923 - curl:...

6.5CVSS6.4AI score0.0627EPSS
Exploits3References4
OpenVAS
OpenVAS
added 2021/09/22 12:0 a.m.30 views

Fedora: Security Advisory for curl (FEDORA-2021-c5584b92d4)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.1CVSS6.8AI score0.06677EPSS
Exploits7References2
RedHat Linux
RedHat Linux
added 2021/09/21 12:25 p.m.54 views

Moderate: Red Hat Security Advisory: curl security update

An update for curl is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

6.5CVSS6.6AI score0.0627EPSS
Exploits3References4
AlmaLinux
AlmaLinux
added 2021/09/21 7:12 a.m.43 views

Moderate: curl security update

The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Security Fixes: curl: Content not matching hash in Metalink is not being discarded CVE-2021-22922 curl: Metalink download sends credentials...

4.3CVSS6.5AI score0.0627EPSS
Exploits3References3
OSV
OSV
added 2021/09/21 7:12 a.m.43 views

RLSA-2021:3582 Moderate: curl security update

The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Security Fixes: curl: Content not matching hash in Metalink is not being discarded CVE-2021-22922 curl: Metalink download sends credentials...

6.5CVSS6.4AI score0.0627EPSS
Exploits3References4
Rockylinux
Rockylinux
added 2021/09/21 7:12 a.m.43 views

curl security update

An update is available for curl. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The curl packages provide the libcurl library and the curl utility for downloadi...

6.5CVSS6.4AI score0.0627EPSS
Exploits3
Oracle linux
Oracle linux
added 2021/09/21 12:0 a.m.44 views

curl security update

7.61.1-18.el84.1 - fix bad connection reuse due to flawed path name checks CVE-2021-22924 - disable metalink support to fix the following vulnerabilities CVE-2021-22923 - metalink download sends credentials CVE-2021-22922 - wrong content via metalink not discarded...

6.5CVSS2AI score0.0627EPSS
Exploits3
Rows per page
Query Builder