Lucene search
K

39 matches found

Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.6 views

TencentOS Server 4: curl (TSSA-2024:0286)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0286 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

8.6CVSS6.5AI score0.36081EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.7 views

Azure Linux 3.0 Security Update: cmake / curl / mysql (CVE-2024-2004)

The version of cmake / curl / mysql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-2004 advisory. - When a protocol selection parameter option disables all protocols without adding any then the...

3.5CVSS6.4AI score0.01681EPSS
Exploits1References2
CBLMariner
CBLMariner
added 2024/10/25 7:50 p.m.11 views

CVE-2024-2004 affecting package mysql for versions less than 8.0.40-1

CVE-2024-2004 affecting package mysql for versions less than 8.0.40-1. An upgraded version of the package is available that resolves this issue...

3.5CVSS6.2AI score0.01681EPSS
Exploits1
CBLMariner
CBLMariner
added 2024/10/23 12:47 a.m.10 views

CVE-2024-2004 affecting package mysql for versions less than 8.0.40-1

CVE-2024-2004 affecting package mysql for versions less than 8.0.40-1. An upgraded version of the package is available that resolves this issue...

3.5CVSS6.9AI score0.01681EPSS
Exploits1
CBLMariner
CBLMariner
added 2024/10/01 6:58 p.m.10 views

CVE-2024-2004 affecting package cmake for versions less than 3.30.3-2

CVE-2024-2004 affecting package cmake for versions less than 3.30.3-2. An upgraded version of the package is available that resolves this issue...

3.5CVSS6.2AI score0.01681EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/09/23 12:0 a.m.28 views

GLSA-202409-20 : curl: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202409-20 curl: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in curl. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block directly from th...

8.6CVSS6.6AI score0.36081EPSS
Exploits6References12
Tenable Nessus
Tenable Nessus
added 2024/08/14 12:0 a.m.59 views

Tenable Security Center Multiple Vulnerabilities (TNS-2024-13)

According to its self-reported version, the Tenable Security Center running on the remote host is 6.2.1, 6.3.0 or 6.4.0. It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2024-13 advisory. - Security Center leverages third-party software to help provide underlying...

9.8CVSS7.5AI score0.99957EPSS
Exploits14References19
Tenable Nessus
Tenable Nessus
added 2024/08/06 12:0 a.m.14 views

CBL Mariner 2.0 Security Update: cmake / curl / mysql (CVE-2024-2004)

The version of cmake / curl / mysql installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-2004 advisory. - When a protocol selection parameter option disables all protocols without adding any then the...

3.5CVSS6.3AI score0.01681EPSS
Exploits1References2
CBLMariner
CBLMariner
added 2024/08/05 3:22 a.m.17 views

CVE-2024-2004 affecting package curl for versions less than 8.8.0-1

CVE-2024-2004 affecting package curl for versions less than 8.8.0-1. An upgraded version of the package is available that resolves this issue...

3.5CVSS4.1AI score0.01681EPSS
Exploits1
CBLMariner
CBLMariner
added 2024/07/22 3:42 p.m.11 views

CVE-2024-2004 affecting package curl for versions less than 8.8.0-1

CVE-2024-2004 affecting package curl for versions less than 8.8.0-1. An upgraded version of the package is available that resolves this issue...

3.5CVSS6.9AI score0.01681EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2024/05/07 3:50 p.m.90 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.57 SP4 security update

Red Hat JBoss Core Services Apache HTTP Server 2.4.57 Service Pack 4 is now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.6CVSS6.9AI score0.91327EPSS
Exploits6References8
OpenVAS
OpenVAS
added 2024/05/07 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2024:1150-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7AI score0.36081EPSS
Exploits2References5
OpenVAS
OpenVAS
added 2024/05/07 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2024:1151-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7AI score0.36081EPSS
Exploits2References5
OpenVAS
OpenVAS
added 2024/05/07 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2024:1151-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7.5AI score0.36081EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2024/05/07 12:0 a.m.61 views

SUSE SLES15 Security Update : curl (SUSE-SU-2024:1151-2)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1151-2 advisory. - CVE-2024-2004: Fix the uUsage of disabled protocol logic. bsc1221665 - CVE-2024-2398: Fix HTTP/2 push headers memory-leak...

8.6CVSS6.8AI score0.36081EPSS
Exploits2References7
Amazon
Amazon
added 2024/05/03 12:0 a.m.5 views

Medium: curl

Issue Overview: When a protocol selection parameter option disables all protocols without adding any then the default set of protocols would remain in the allowed set due to an error in the logic for removing protocols. The below command would perform a request to curl.se with a plaintext protoco...

8.6CVSS6.8AI score0.36081EPSS
Exploits2
Cloud Foundry
Cloud Foundry
added 2024/05/02 12:0 a.m.28 views

USN-6718-1: curl vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 22.04 Description Dan Fandrich discovered that curl would incorrectly use the default set of protocols when a parameter option disabled all protocols without adding any, contrary to expectations. This issue only affected...

8.6CVSS6.9AI score0.36081EPSS
Exploits2Affected Software3
Tenable Nessus
Tenable Nessus
added 2024/04/30 12:0 a.m.41 views

Amazon Linux 2 : curl (ALAS-2024-2526)

The version of curl installed on the remote host is prior to 8.3.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2526 advisory. When a protocol selection parameter option disables all protocols without adding any then the default set of protocols would...

8.6CVSS6.6AI score0.36081EPSS
Exploits2References6
OpenVAS
OpenVAS
added 2024/04/30 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-6718-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7.5AI score0.36081EPSS
Exploits2References2
Amazon
Amazon
added 2024/04/30 12:0 a.m.32 views

Medium: curl

Issue Overview: When a protocol selection parameter option disables all protocols without adding any then the default set of protocols would remain in the allowed set due to an error in the logic for removing protocols. The below command would perform a request to curl.se with a plaintext protoco...

8.6CVSS7.2AI score0.36081EPSS
Exploits2
Rows per page
Query Builder