Lucene search
K

30 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2022-42916

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In curl before 7.86.0, the HSTS check could be bypassed to trick it into staying with HTTP. Using its HSTS support, curl can be instructed to use HTTPS directly...

7.5CVSS7AI score0.01644EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2024/04/17 10:2 p.m.20 views

CVE-2022-42916 affecting package tensorflow for versions less than 2.16.1-1

CVE-2022-42916 affecting package tensorflow for versions less than 2.16.1-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS8.8AI score0.01644EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/06/07 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2023-2066)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.7AI score0.04325EPSS
Exploits4References2
Cloud Foundry
Cloud Foundry
added 2023/05/18 12:0 a.m.39 views

USN-5702-1: curl vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Canonical Ubuntu 22.04 Description Robby Simpson discovered that curl incorrectly handled certain POST operations after PUT operations. This issue could cause applications using curl to send the wrong data, perform...

9.8CVSS9.3AI score0.04325EPSS
Exploits2Affected Software5
OpenVAS
OpenVAS
added 2023/04/19 12:0 a.m.19 views

Oracle VirtualBox Security Update (Apr 2023) - Windows

Oracle VirtualBox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:vmvirtualbox";...

8.2CVSS6.6AI score0.01644EPSS
Exploits1References1
Kaspersky
Kaspersky
added 2023/04/18 12:0 a.m.60 views

KLA48969 Multiple vulnerabilities in Oracle VirtualBox

Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Code execution vulnerability ...

8.2CVSS8.7AI score0.01644EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/03/20 12:0 a.m.40 views

CBL Mariner 2.0 Security Update: curl (CVE-2022-42916)

The version of curl installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-42916 advisory. - In curl before 7.86.0, the HSTS check could be bypassed to trick it into staying with HTTP. Using its HSTS...

7.5CVSS7.2AI score0.01644EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 3:22 a.m.4 views

SUSE CVE-2022-42916

In curl before 7.86.0, the HSTS check could be bypassed to trick it into staying with HTTP. Using its HSTS support, curl can be instructed to use HTTPS directly instead of using an insecure cleartext HTTP step even when HTTP is provided in the URL. This mechanism could be bypassed if the host nam...

7.5CVSS8.7AI score0.01644EPSS
Exploits0References55
Tenable Nessus
Tenable Nessus
added 2023/01/24 12:0 a.m.83 views

macOS 13.x < 13.2 Multiple Vulnerabilities (HT213605)

The remote host is running a version of macOS / Mac OS X that is 13.x prior to 13.2. It is, therefore, affected by multiple vulnerabilities: - This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in tvOS 16.3, macOS Ventura 13.2, watchOS 9.3, iOS 16.3...

9.8CVSS7.1AI score0.04325EPSS
Exploits4References37
Tenable Nessus
Tenable Nessus
added 2023/01/23 12:0 a.m.75 views

macOS 12.x < 12.6.3 Multiple Vulnerabilities (HT213604)

The remote host is running a version of macOS / Mac OS X that is 12.x prior to 12.6.3. It is, therefore, affected by multiple vulnerabilities: - This issue was addressed by enabling hardened runtime. This issue is fixed in macOS Monterey 12.6.3, macOS Ventura 13.2, watchOS 9.3, macOS Big Sur...

9.8CVSS8AI score0.04325EPSS
Exploits3References22
Apple
Apple
added 2023/01/23 12:0 a.m.155 views

About the security content of macOS Ventura 13.2

About the security content of macOS Ventura 13.2 This document describes the security content of macOS Ventura 13.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases...

9.8CVSS9.8AI score0.04325EPSS
Exploits4References1Affected Software1
OpenVAS
OpenVAS
added 2023/01/19 12:0 a.m.25 views

Oracle MySQL Server <= 5.7.40, 8.x <= 8.0.31 Security Update (cpujan2023) - Linux

Oracle MySQL Server is prone to a vulnerability in libcurl. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; if...

9.8CVSS5.9AI score0.04325EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2023/01/09 12:0 a.m.34 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2023-1005)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.8AI score0.04325EPSS
Exploits2References2
RedHat Linux
RedHat Linux
added 2022/12/08 1:21 p.m.88 views

Important: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.51 SP1 security update

An update is now available for Red Hat JBoss Core Services Apache HTTP Server 2.4.51 Service Pack 1. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

10CVSS7.6AI score0.95764EPSS
Exploits20References24
RedHat Linux
RedHat Linux
added 2022/12/08 1:8 p.m.95 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.51 SP1 security update

An update is now available for Red Hat JBoss Core Services Apache HTTP Server 2.4.51 Service Pack 1 on Red Hat Enterprise Linux versions 7 and 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which...

10CVSS7.4AI score0.95764EPSS
Exploits14References18
Tenable Nessus
Tenable Nessus
added 2022/12/08 12:0 a.m.58 views

RHEL 7 / 8 : Red Hat JBoss Core Services Apache HTTP Server 2.4.51 SP1 (RHSA-2022:8840)

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:8840 advisory. Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP...

10CVSS7.8AI score0.95764EPSS
Exploits14References37
CBLMariner
CBLMariner
added 2022/11/24 12:45 a.m.19 views

CVE-2022-42916 affecting package curl 7.84.0-1

CVE-2022-42916 affecting package curl 7.84.0-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS9.9AI score0.01644EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2022/11/17 8:48 a.m.69 views

Security Bulletin: The Community Edition of IBM ILOG CPLEX Optimization Studio is affected by multiple vulnerabilities in libcurl (CVE-2022-42915, CVE-2022-42916, CVE-2022-32221)

Summary The Community Edition of IBM ILOG CPLEX Optimization Studio on Windows platform only has addressed the following vulnerabilities. Vulnerability Details CVEID:CVE-2022-42915 DESCRIPTION: cURL libcurl is vulnerable to a denial of service, caused by a double-free flaw in the error/cleanup...

9.8CVSS9AI score0.04325EPSS
Exploits1Affected Software1
CBLMariner
CBLMariner
added 2022/11/16 2:26 a.m.15 views

CVE-2022-42916 affecting package curl for versions less than 7.86.0-1

CVE-2022-42916 affecting package curl for versions less than 7.86.0-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS8.8AI score0.01644EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/11/11 12:0 a.m.29 views

Fedora: Security Advisory for curl (FEDORA-2022-39688a779d)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.5AI score0.04325EPSS
Exploits2References2
Rows per page
Query Builder