Lucene search
+L

68 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/02/20 3:40 a.m.21 views

Security Bulletin: Execution Engine for Apache Hadoop is vulnerable to heap-based buffer overflow and remote attacker to bypass security restrictions

Summary bash, curl are used by Execution Engine for Apache Hadoop in all the components. CVE-2022-3715, CVE-2022-32221, CVE-2022-32207, CVE-2023-38545, CVE-2022-22576, CVE-2022-27781, CVE-2021-22926, CVE-2021-22946, CVE-2022-27782, CVE-2023-28319, CVE-2022-32206, CVE-2021-22922, CVE-2023-23916,...

9.8CVSS10AI score0.78483EPSS
Exploits29Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/02/29 12:0 a.m.26 views

CentOS 9 : curl-7.76.1-21.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the curl-7.76.1-21.el9 build changelog. - When doing HTTPS transfers, libcurl might erroneously use the read callback CURLOPTREADFUNCTION to ask for data to send, even when the...

9.8CVSS6.9AI score0.04325EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.23 views

Rocky Linux 9 : curl (RLSA-2023:0333)

The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:0333 advisory. - When doing HTTPS transfers, libcurl might erroneously use the read callback CURLOPTREADFUNCTION to ask for data to send, even when the CURLOPTPOSTFIELDS option...

9.8CVSS6.9AI score0.04325EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/07/26 12:0 a.m.25 views

EulerOS Virtualization 3.0.6.6 : curl (EulerOS-SA-2023-2419)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - When doing HTTPS transfers, libcurl might erroneously use the read callback CURLOPTREADFUNCTION to ask for data to send, even when...

9.8CVSS7.1AI score0.04325EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2023/07/18 8:33 a.m.48 views

Moderate: Red Hat Security Advisory: curl security update

An update for curl is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

9.8CVSS6.8AI score0.04325EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2023/06/07 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2023-2066)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.7AI score0.04325EPSS
Exploits4References2
Cloud Foundry
Cloud Foundry
added 2023/05/18 12:0 a.m.41 views

USN-5702-1: curl vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Canonical Ubuntu 22.04 Description Robby Simpson discovered that curl incorrectly handled certain POST operations after PUT operations. This issue could cause applications using curl to send the wrong data, perform...

9.8CVSS9.3AI score0.04325EPSS
Exploits2Affected Software5
IBM Security Bulletins
IBM Security Bulletins
added 2023/05/17 10:25 p.m.37 views

Security Bulletin: IBM InfoSphere Information Server is affected by a vulnerability in libcurl (CVE-2022-32221)

Summary A vulnerability in libcurl used by InfoSphere Information Server was addressed. Vulnerability Details CVEID:CVE-2022-32221 DESCRIPTION: cURL libcurl could allow a remote attacker to bypass security restrictions, caused by a flaw when using the read callback CURLOPTREADFUNCTION to ask for...

9.8CVSS8.4AI score0.04325EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2023/05/16 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2023-1931)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.3AI score0.04325EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2023/05/16 12:0 a.m.25 views

EulerOS Virtualization 2.10.1 : curl (EulerOS-SA-2023-1900)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - When doing HTTPS transfers, libcurl might erroneously use the read callback CURLOPTREADFUNCTION to ask for data to send, even when...

9.8CVSS7.1AI score0.04325EPSS
Exploits2References3
Oracle linux
Oracle linux
added 2023/05/15 12:0 a.m.60 views

curl security update

7.76.1-23 - fix HTTP multi-header compression denial of service CVE-2023-23916 7.76.1-22 - smb/telnet: fix use-after-free when HTTP proxy denies tunnel CVE-2022-43552 7.76.1-21 - fix POST following PUT confusion CVE-2022-32221 7.76.1-20 - control code in cookie denial of service CVE-2022-35252...

9.8CVSS7.2AI score0.04325EPSS
Exploits4
ICS
ICS
added 2023/05/09 12:0 a.m.46 views

Siemens SINEC NMS Third-Party

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please seeSiemens' ProductCERT Security Advisories CERT Services | Services |...

9.8CVSS8.7AI score0.04325EPSS
Exploits5References12
OpenVAS
OpenVAS
added 2023/05/08 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2023-1715)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.8AI score0.04325EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/05/07 12:0 a.m.55 views

EulerOS Virtualization 3.0.2.0 : curl (EulerOS-SA-2023-1715)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - When doing HTTPS transfers, libcurl might erroneously use the read callback CURLOPTREADFUNCTION to ask for data to send, even when...

9.8CVSS6.9AI score0.04325EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/04/27 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2023-1667)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.3AI score0.04325EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2023/03/08 12:0 a.m.34 views

EulerOS 2.0 SP5 : curl (EulerOS-SA-2023-1496)

According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - When doing HTTPS transfers, libcurl might erroneously use the read callback CURLOPTREADFUNCTION to ask for data to send, even when the...

9.8CVSS6.9AI score0.04325EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/02/10 12:0 a.m.18 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2023-1379)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.8AI score0.04325EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/02/09 12:0 a.m.36 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2023-1309)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.3AI score0.04325EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2023/02/08 12:0 a.m.69 views

EulerOS 2.0 SP8 : curl (EulerOS-SA-2023-1309)

According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - When doing HTTPS transfers, libcurl might erroneously use the read callback CURLOPTREADFUNCTION to ask for data to send, even when the...

9.8CVSS7.1AI score0.04325EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2023/01/30 12:0 a.m.31 views

Debian: Security Advisory (DSA-5330-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.04325EPSS
Exploits3References4
Rows per page
Query Builder