Lucene search
K

24 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.15 views

EUVD-2018-1802

Malware in sbrugna...

8.8CVSS8.6AI score0.02239EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.17 views

RHEL 5 : curl (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - curl: NTLM password overflow via integer overflow CVE-2018-14618 - cURL and libcurl 7.10.6 through 7.34.0...

9.8CVSS8.4AI score0.17942EPSS
Exploits1References27
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.13 views

RHEL 6 : curl (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - curl: NTLM password overflow via integer overflow CVE-2018-14618 - The default configuration for cURL and...

9.8CVSS7.9AI score0.49739EPSS
Exploits2References22
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.9 views

Slackware: Security Advisory (SSA:2018-249-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.9AI score0.10823EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2019/08/13 12:0 a.m.152 views

curl security and bug fix update

7.29.0-54.0.1 - Security Fixes OraBug: 28939992 - CVE-2016-8615 cookie injection for other servers https://curl.haxx.se/docs/CVE-2016-8615.html - CVE-2016-8616 case insensitive password comparison https://curl.haxx.se/docs/CVE-2016-8616.html - CVE-2016-8617 OOB write via unchecked multiplication...

10CVSS2.4AI score0.10823EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.254 views

CentOS 7 : curl (CESA-2019:1880)

An update for curl is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE li...

10CVSS7AI score0.10823EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.35 views

Oracle Linux 7 : curl (ELSA-2019-1880)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2019-1880 advisory. - CVE-2016-8615 cookie injection for other servers https://curl.haxx.se/docs/CVE-2016-8615.html - CVE-2016-8616 case insensitive password comparison...

10CVSS7.3AI score0.10823EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.27 views

Scientific Linux Security Update : curl on SL7.x x86_64 (20190729)

The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Security Fixes : - curl: NTLM password overflow via integer overflow CVE-2018-14618 For more details about the security issues, including t...

10CVSS7AI score0.10823EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2019/08/01 12:0 a.m.144 views

CentOS Update for curl CESA-2019:1880 centos7

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.5AI score0.10823EPSS
Exploits0References2
Cent OS
Cent OS
added 2019/07/31 1:37 p.m.345 views

curl, libcurl security update

CentOS Errata and Security Advisory CESA-2019:1880 An update for curl is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

10CVSS6.7AI score0.10823EPSS
Exploits0References7
Oracle linux
Oracle linux
added 2019/07/30 12:0 a.m.198 views

curl security and bug fix update

7.29.0-51.0.1.el76.3 - Security Fixes OraBug: 28939992 - CVE-2016-8615 cookie injection for other servers https://curl.haxx.se/docs/CVE-2016-8615.html - CVE-2016-8616 case insensitive password comparison https://curl.haxx.se/docs/CVE-2016-8616.html - CVE-2016-8617 OOB write via unchecked...

10CVSS2.6AI score0.10823EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2019/07/29 3:47 p.m.266 views

Low: Red Hat Security Advisory: curl security and bug fix update

An update for curl is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

10CVSS6.8AI score0.10823EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.33 views

Fedora 29 : curl (2018-7f83032de6)

fix NTLM password overflow via integer overflow CVE-2018-14618 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

10CVSS6.9AI score0.10823EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/11/15 12:0 a.m.22 views

Adobe Reader 2017 Information Disclosure Vulnerability (APSB18-40) - Windows

Adobe Reader 2017 is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS7.2AI score0.10267EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2018/11/15 12:0 a.m.18 views

Adobe Reader DC Information Disclosure Vulnerability (APSB18-40) - Windows

Adobe Reader DC is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS7.2AI score0.10267EPSS
Exploits0References1
ThreatPost
ThreatPost
added 2018/11/13 4:44 p.m.22 views

Adobe Fixes Acrobat and Reader Flaw With Publicly-Available PoC

Adobe on Tuesday released three patches – including a fix for a flaw in Adobe Acrobat and Reader that exposes hashed passwords that already has a proof-of-concept PoC exploit code publicly available. The information disclosure vulnerability, CVE-2018-15979, exists in Adobe Acrobat and Reader for...

5CVSS0.4AI score0.10267EPSS
Exploits0References4
Slackware Linux
Slackware Linux
added 2018/09/06 7:45 a.m.43 views

[slackware-security] curl

New curl packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/curl-7.61.1-i586-1slack14.2.txz: Upgraded. This update fixes an NTLM password overflow via integer overflow. For more...

10CVSS0.4AI score0.10823EPSS
Exploits0
Prion
Prion
added 2018/02/09 11:29 p.m.10 views

Input validation

GNOME librsvg version before commit c6ddf2ed4d768fd88adbea2b63f575cd523022ea contains a Improper input validation vulnerability in rsvg-io.c that can result in the victim's Windows username and NTLM password hash being leaked to remote attackers through SMB. This attack appear to be exploitable v...

4.3CVSS8.6AI score0.02239EPSS
Exploits0References3Affected Software2
UbuntuCve
UbuntuCve
added 2018/02/09 11:29 p.m.22 views

CVE-2018-1000041

GNOME librsvg version before commit c6ddf2ed4d768fd88adbea2b63f575cd523022ea contains a Improper input validation vulnerability in rsvg-io.c that can result in the victim's Windows username and NTLM password hash being leaked to remote attackers through SMB. This attack appear to be exploitable v...

8.8CVSS7.2AI score0.02239EPSS
Exploits0References1
Cvelist
Cvelist
added 2018/02/09 11:0 p.m.20 views

CVE-2018-1000041

GNOME librsvg version before commit c6ddf2ed4d768fd88adbea2b63f575cd523022ea contains a Improper input validation vulnerability in rsvg-io.c that can result in the victim's Windows username and NTLM password hash being leaked to remote attackers through SMB. This attack appear to be exploitable v...

8.6AI score0.02239EPSS
Exploits0References3
Rows per page
Query Builder