Lucene search
+L

44 matches found

nessus
nessus
added 2025/11/13 12:0 a.m.5 views

Siemens RUGGEDCOM ROX, SIMATIC S7-1500 Improper Certificate Validation (CVE-2022-27782)

libcurl would reuse a previously created connection even when a TLS or SSHrelated option had been changed that should have prohibited reuse.libcurl keeps previously used connections in a connection pool for subsequenttransfers to reuse if one of them matches the setup. However, several TLS andSSH...

7.5CVSS6.7AI score0.02596EPSS
Exploits1References6
nessus
nessus
added 2024/07/24 12:0 a.m.20 views

Photon OS 5.0: Cmake PHSA-2023-5.0-0035

An update of the cmake package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-5.0-0035. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

9.8CVSS7.5AI score0.82017EPSS
Exploits14References20
nessus
nessus
added 2024/07/24 12:0 a.m.25 views

Photon OS 3.0: Curl PHSA-2022-3.0-0406

An update of the curl package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2022-3.0-0406. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

7.5CVSS6.9AI score0.03425EPSS
Exploits7References8
nessus
nessus
added 2024/07/23 12:0 a.m.31 views

Photon OS 4.0: Curl PHSA-2022-4.0-0205

An update of the curl package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2022-4.0-0205. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

7.5CVSS6.9AI score0.03425EPSS
Exploits7References8
ibm
ibm
added 2024/04/12 2:33 p.m.44 views

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to multiple Base OS issues

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to multiple Base OS issues. We have updated the base image used by our Speech Services and the following vulnerabilities have been addressed. Please read the details for remediation below. Vulnerability Details...

9.8CVSS9.9AI score0.3197EPSS
Exploits11Affected Software1
ibm
ibm
added 2023/01/12 9:49 p.m.32 views

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a security restrictions bypass in cURL libcurl (CVE-2022-27782)

Summary iBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a security restrictions bypass in cURL libcurl, caused by an easy connection reuse flaw for TLS and SSH CVE-2022-27782. cURL libcurl is used as part of the base image included in our service components. Pleas...

7.5CVSS7.8AI score0.02596EPSS
Exploits1Affected Software1
openvas
openvas
added 2022/12/28 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2022-2890)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.5AI score0.3197EPSS
Exploits6References2
openvas
openvas
added 2022/12/19 12:0 a.m.25 views

Western Digital My Cloud Multiple Products 5.x < 5.25.124 Multiple Vulnerabilities (WDC-22019)

Multiple Western Digital My Cloud products are prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progr...

9.8CVSS7.4AI score0.3197EPSS
Exploits14References2
nessus
nessus
added 2022/11/16 12:0 a.m.34 views

AlmaLinux 9 : curl (ALSA-2022:5245)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:5245 advisory. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...

8.1CVSS6.8AI score0.03425EPSS
Exploits4References5
nessus
nessus
added 2022/09/06 12:0 a.m.39 views

Amazon Linux 2022 : curl, curl-minimal, libcurl (ALAS2022-2022-065)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-065 advisory. A vulnerability was found in curl. This security flaw allows reusing OAUTH2-authenticated connections without properly ensuring that the connection was authenticated with the same credentials s...

8.1CVSS6.8AI score0.03425EPSS
Exploits8References17
debian
debian
added 2022/08/28 11:0 p.m.120 views

[SECURITY] [DLA 3085-1] curl security update

Debian LTS Advisory DLA-3085-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany August 29, 2022 https://wiki.debian.org/LTS Package : curl Version : 7.64.0-4+deb10u3 CVE ID : CVE-2021-22898 CVE-2021-22924 CVE-2021-22946 CVE-2021-22947 CVE-2022-22576 CVE-2022-27776...

8.1CVSS6.8AI score0.3197EPSS
Exploits10
cbl_mariner
cbl_mariner
added 2022/08/24 10:5 p.m.20 views

CVE-2022-27782 affecting package curl 7.76.0-9

CVE-2022-27782 affecting package curl 7.76.0-9. An upgraded version of the package is available that resolves this issue...

7.5CVSS9.7AI score0.02596EPSS
Exploits1
openvas
openvas
added 2022/08/18 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2022-2251)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.02596EPSS
Exploits2References2
openvas
openvas
added 2022/08/18 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2022-2238)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.02596EPSS
Exploits2References2
openvas
openvas
added 2022/08/18 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2022-2217)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.3AI score0.02596EPSS
Exploits3References2
openvas
openvas
added 2022/08/18 12:0 a.m.33 views

SUSE: Security Advisory (SUSE-SU-2022:2829-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.3197EPSS
Exploits4References7
nessus
nessus
added 2022/08/17 12:0 a.m.45 views

SUSE SLES12 Security Update : curl (SUSE-SU-2022:2813-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:2813-1 advisory. - CVE-2022-27781: Fixed an issue where curl will get stuck in an infinite loop when trying to retrieve details about a TLS server's...

7.5CVSS6.7AI score0.3197EPSS
Exploits4References13
nessus
nessus
added 2022/08/17 12:0 a.m.53 views

EulerOS 2.0 SP10 : curl (EulerOS-SA-2022-2238)

According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - libcurl provides the CURLOPTCERTINFO option to allow applications torequest details to be returned about a server's certificate chain.Due to an...

7.5CVSS6.7AI score0.02596EPSS
Exploits2References3
debian
debian
added 2022/08/01 4:58 p.m.209 views

[SECURITY] [DSA 5197-1] curl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5197-1 [email protected] https://www.debian.org/security/ Markus Koschany August 01, 2022 https://www.debian.org/security/faq -...

9.8CVSS8.1AI score0.3197EPSS
Exploits15
nessus
nessus
added 2022/07/08 12:0 a.m.55 views

Rocky Linux 8 : curl (RLSA-2022:5313)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:5313 advisory. - An improper authentication vulnerability exists in curl 7.33.0 to and including 7.82.0 which might allow reuse OAUTH2-authenticated connections withou...

8.1CVSS6.9AI score0.03425EPSS
Exploits4References9
Rows per page
Query Builder