Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2 matches found

Veracode
Veracodeadded 2018/07/13 4:32 a.m.29 views

Heap-Based Buffer Overflow

libcurl is vulnerable to heap-based buffer overflow. The vulnerability is due to not using upload buffer size for scratch buffer in Curlsmtpescapeeob in lib/smtp.c. It is possible only when an attacker can get control over the data transmitted over SMTP using curl with certain settings i.e., use ...

9.8CVSS9.2AI score0.06433EPSS
Exploits1References6Affected Software2
OSV
OSVadded 2018/07/11 8:0 a.m.4 views

CURL-CVE-2018-0500 SMTP send heap buffer overflow

curl might overflow a heap based memory buffer when sending data over SMTP and using a reduced read buffer. When sending data over SMTP, curl allocates a separate "scratch area" on the heap to be able to escape the uploaded data properly if the uploaded data contains data that requires it. The si...

9.8CVSS9.7AI score0.06433EPSS
Exploits1
Rows per page
Query Builder