CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3 matches found

Hacker One•added 2026/03/13 4:59 p.m.•13 views

curl: SMB READ_ANDX DataOffset not validated

Summary: in smbrequeststate case SMBDOWNLOAD curl reads two server-controlled fields from a READANDX response and uses them to decide where in the receive buffer file data starts. c / lib/smb.c / len = Curlread16leconst unsigned char msg + sizeofstruct smbheader + 11; off = Curlread16leconst...

6.1AI score

Exploits0

Hacker One•added 2025/12/18 11:38 a.m.•14 views

curl: Heap Buffer Over-Read via Malicious SMB Server READ_ANDX Response

================================================================================ DESCRIPTION: ================================================================================ Summary: I discovered a heap buffer over-read vulnerability in libcurl's SMB protocol implementation. A malicious SMB serv...

6.9AI score

Exploits0

Hacker One•added 2025/12/18 11:13 a.m.•8 views

curl: Heap Buffer Over-Read via Malicious SMB Server READ_ANDX Response

6.9AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by