Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-1809

Malicious code in bioql PyPI...

9.8CVSS8.5AI score0.01253EPSS
Exploits1References7
F5 Networks
F5 Networks
added 2025/04/21 5:17 a.m.11 views

K000150939: cURL vulnerability CVE-2025-0665

Security Advisory Description libcurl would wrongly close the same eventfd file descriptor twice when taking down a connection channel after having completed a threaded name resolve. CVE-2025-0665 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory...

7CVSS8.4AI score0.01253EPSS
Exploits1
Redos
Redos
added 2025/02/26 12:0 a.m.80 views

ROS-20250226-14

A vulnerability in the gzipdowrite function of the zlib compression library of the cURL command-line utility is related to an integer overflow. Exploitation of the vulnerability could allow an attacker acting remotely, bypass the ASLR protection mechanism, execute arbitrary code, or cause a denia...

7.3CVSS7.4AI score0.01253EPSS
Exploits2
Veracode
Veracode
added 2025/02/10 10:37 a.m.11 views

Duplicate Operations On Resource

libcurl is vulnerable to Duplicate Operations on Resource. The vulnerability is due to improper handling of eventfd file descriptors due to closing the same descriptor twice after completing a threaded name resolution, which may lead to unexpected behavior or resource leaks...

9.8CVSS9.3AI score0.01253EPSS
Exploits1References9Affected Software2
NVD
NVD
added 2025/02/05 10:15 a.m.19 views

CVE-2025-0665

libcurl would wrongly close the same eventfd file descriptor twice when taking down a connection channel after having completed a threaded name resolve...

7CVSS0.01253EPSS
Exploits1References6
OSV
OSV
added 2025/02/05 9:16 a.m.15 views

CVE-2025-0665 eventfd double close

libcurl would wrongly close the same eventfd file descriptor twice when taking down a connection channel after having completed a threaded name resolve...

7CVSS7.1AI score0.01253EPSS
Exploits1References8
CVE
CVE
added 2025/02/05 9:16 a.m.423 views

CVE-2025-0665

CVE-2025-0665 affects libcurl/curl. The issue is double-closing the same eventfd file descriptor when bringing down a connection channel after a threaded name resolve, leading to potential instability and misbehavior. Several sources note that this can allow a remote attacker to execute arbitrary...

7CVSS7AI score0.01253EPSS
Exploits1References6Affected Software1
Positive Technologies
Positive Technologies
added 2025/01/23 12:0 a.m.6 views

PT-2025-5689 · Libcurl +2 · Libcurl +2

Name of the Vulnerable Software and Affected Versions: libcurl affected versions not specified Description: The issue arises when libcurl wrongly closes the same eventfd file descriptor twice after completing a threaded name resolve and taking down a connection channel. This problem occurs due to...

10CVSS5.7AI score0.01253EPSS
Exploits3References59
Rows per page
Query Builder