Lucene search
K

7 matches found

RedHat Linux
RedHat Linux
added 2026/01/28 10:9 a.m.5 views

curl: libcurl: Curl out of bounds read for cookie path

An out of bounds read flaw has been discovered in the curl project. Under specific conditions the path comparison logic makes curl read outside a heap buffer boundary. This bug either causes a crash or it potentially makes the comparison come to the wrong conclusion and lets the clear-text site...

7.5CVSS5.8AI score0.01301EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2025/12/11 1:44 p.m.4 views

curl: libcurl: Curl out of bounds read for cookie path

An out of bounds read flaw has been discovered in the curl project. Under specific conditions the path comparison logic makes curl read outside a heap buffer boundary. This bug either causes a crash or it potentially makes the comparison come to the wrong conclusion and lets the clear-text site...

7.5CVSS5.8AI score0.01301EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2025/12/11 1:0 p.m.5 views

curl: libcurl: Curl out of bounds read for cookie path

An out of bounds read flaw has been discovered in the curl project. Under specific conditions the path comparison logic makes curl read outside a heap buffer boundary. This bug either causes a crash or it potentially makes the comparison come to the wrong conclusion and lets the clear-text site...

7.5CVSS5.8AI score0.01301EPSS
Exploits1References8
OSV
OSV
added 2025/09/12 5:10 a.m.5 views

CVE-2025-9086 Out of bounds read for cookie path

A cookie is set using the secure keyword for https://target 2. curl is redirected to or otherwise made to speak with http://target same hostname, but using clear text HTTP using the same cookie set 3. The same cookie name is set - but with just a slash as path path="/",. Since this site is not...

7.5CVSS6.7AI score0.01301EPSS
Exploits1References9
CVE
CVE
added 2025/09/12 5:10 a.m.75 views

CVE-2025-9086

CVE-2025-9086 affects curl’s curl/libcurl component. Reports indicate an out-of-bounds read when handling a cookie path for a secure cookie, which can cause a crash or potentially allow memory-read conditions. The vulnerability is documented across multiple advisories and vendor pages, including ...

7.5CVSS6.2AI score0.01301EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2025/09/12 5:10 a.m.11 views

CVE-2025-9086 Out of bounds read for cookie path

A cookie is set using the secure keyword for https://target 2. curl is redirected to or otherwise made to speak with http://target same hostname, but using clear text HTTP using the same cookie set 3. The same cookie name is set - but with just a slash as path path="/",. Since this site is not...

0.01301EPSS
Exploits1References3
CNVD
CNVD
added 2019/10/11 12:0 a.m.4 views

Microsoft Edge and Internet Explorer Spoofing Vulnerability

Microsoft Edge and Microsoft Internet Explorer IE are both products of Microsoft Corporation.Microsoft Edge is a web browser that comes with Windows 10 and later.Microsoft Internet Explorer is a web browser that comes with Windows operating systems. Microsoft Edge is a web browser that comes with...

4.3CVSS6.6AI score0.02134EPSS
Exploits0References1
Rows per page
Query Builder