Lucene search
K

258 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-41461

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00632EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-22352

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00914EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.36 views

EUVD-2024-34446

Malicious code in bioql PyPI...

4.8CVSS5.7AI score0.00872EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-34667

Malicious code in bioql PyPI...

5.3CVSS5.8AI score0.00867EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-55065

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00857EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-22351

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.01061EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-35232

Malicious code in bioql PyPI...

5.3CVSS6.3AI score0.00917EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-34467

Malicious code in bioql PyPI...

6.5CVSS6.8AI score0.00848EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/10/03 12:0 a.m.3 views

SUSE: Security Advisory (SUSE-SU-2025:03447-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8AI score
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.7 views

CBL Mariner 2.0 Security Update: mysql (CVE-2025-5025)

The version of mysql installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-5025 advisory. - libcurl supports pinning of the server certificate public key for HTTPS transfers. Due to an omission, this...

4.8CVSS6.3AI score0.00241EPSS
Exploits2References2
Hacker One
Hacker One
added 2025/07/31 2:56 p.m.19 views

curl: Stack use-after-scope in HTTP/3 POST request processing via CURLOPT_POSTFIELDS

Summary A stack use-after-scope vulnerability exists in libcurl's HTTP/3 request processing when using CURLOPTPOSTFIELDS with stack-allocated buffers. libcurl retains a pointer to user-provided POST data but accesses it after the original stack frame has been destroyed, leading to memory corrupti...

7.3AI score
Exploits0
Hacker One
Hacker One
added 2025/07/20 5:10 a.m.16 views

curl: OpenSSL HTTP/3 bogus CURLINFO_TLS_SSL_PTR

Summary: curleasygetinfo CURLINFOTLSSSLPTR appears to return invalid SSL connection pointer for OpenSSL HTTP/3 connections. Using this SSL connection results in a crash, and potential other impacts. This issue does not happen with libcurl 8.14.1, suggesting that the bug is in libcurl itself or...

8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.5 views

TencentOS Server 4: nginx (TSSA-2024:0497)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0497 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

6.5CVSS7AI score0.00917EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/30 6:54 a.m.14 views

CVE-2025-5025

libcurl supports pinning of the server certificate public key for HTTPS transfers. Due to an omission, this check is not performed when connecting with QUIC for HTTP/3, when the TLS backend is wolfSSL. Documentation says the option works with wolfSSL, failing to specify that it does not for QUIC...

6.8AI score0.00241EPSS
Exploits2References1
OSV
OSV
added 2025/05/28 8:0 a.m.29 views

CURL-CVE-2025-5025 No QUIC certificate pinning with wolfSSL

libcurl supports pinning of the server certificate public key for HTTPS transfers. Due to an omission, this check is not performed when connecting with QUIC for HTTP/3, when the TLS backend is wolfSSL. Documentation says the option works with wolfSSL, failing to specify that it does not for QUIC...

4.8CVSS7.1AI score0.00241EPSS
Exploits2
OSV
OSV
added 2025/05/28 7:15 a.m.7 views

CVE-2025-5025

libcurl supports pinning of the server certificate public key for HTTPS transfers. Due to an omission, this check is not performed when connecting with QUIC for HTTP/3, when the TLS backend is wolfSSL. Documentation says the option works with wolfSSL, failing to specify that it does not for QUIC...

4.8CVSS7AI score0.00241EPSS
Exploits2References4
Cvelist
Cvelist
added 2025/05/28 6:29 a.m.13 views

CVE-2025-5025 No QUIC certificate pinning with wolfSSL

libcurl supports pinning of the server certificate public key for HTTPS transfers. Due to an omission, this check is not performed when connecting with QUIC for HTTP/3, when the TLS backend is wolfSSL. Documentation says the option works with wolfSSL, failing to specify that it does not for QUIC...

0.00241EPSS
Exploits2References3
Vulnrichment
Vulnrichment
added 2025/05/28 6:29 a.m.10 views

CVE-2025-5025 No QUIC certificate pinning with wolfSSL

libcurl supports pinning of the server certificate public key for HTTPS transfers. Due to an omission, this check is not performed when connecting with QUIC for HTTP/3, when the TLS backend is wolfSSL. Documentation says the option works with wolfSSL, failing to specify that it does not for QUIC...

6.7AI score0.00241EPSS
Exploits2References3
AlpineLinux
AlpineLinux
added 2025/05/28 6:29 a.m.10 views

CVE-2025-5025

libcurl supports pinning of the server certificate public key for HTTPS transfers. Due to an omission, this check is not performed when connecting with QUIC for HTTP/3, when the TLS backend is wolfSSL. Documentation says the option works with wolfSSL, failing to specify that it does not for QUIC...

4.8CVSS7AI score0.00241EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2025/05/23 10:43 a.m.15 views

CVE-2024-25622

h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3. The configuration directives provided by the headers handler allows users to modify the response headers being sent by h2o. The configuration file of h2o has scopes, and the inner scopes e.g., path level are expected to inherit t...

4.3CVSS6.6AI score0.00428EPSS
Exploits1References1
Rows per page
Query Builder