CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

OSV•added 2025/06/28 6:23 p.m.•4 views

CLSA-2025-1751135005 curl: Fix of CVE-2024-7264

CVE-2024-7264: fix out-of-bound read in GTime2str function...

6.5CVSS6.8AI score0.00796EPSS

Exploits1References1

OSV•added 2025/06/24 5:8 p.m.•2 views

CLSA-2025-1750784906 curl: Fix of CVE-2024-7264

CVE-2024-7264: fix out-of-bound read in GTime2str function...

6.5CVSS6.8AI score0.00796EPSS

Exploits1References1

Tenable Nessus•added 2024/11/04 12:0 a.m.•14 views

EulerOS 2.0 SP12 : curl (EulerOS-SA-2024-2795)

According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : libcurl's ASN1 parser code has the GTime2str function, used for parsing an ASN.1 Generalized Time field. If given an syntactically incorrect field,...

6.5CVSS7.3AI score0.00796EPSS

Exploits1References2

Vulnrichment•added 2024/07/31 8:8 a.m.•22 views

CVE-2024-7264 ASN.1 date parser overread

libcurl's ASN1 parser code has the GTime2str function, used for parsing an ASN.1 Generalized Time field. If given an syntactically incorrect field, the parser might end up using -1 for the length of the time fraction, leading to a strlen getting performed on a pointer to a heap buffer area that i...

7.1AI score0.00796EPSS

Exploits1References4