Lucene search
K

16 matches found

SUSE Linux
SUSE Linux
added 2026/05/19 11:56 a.m.10 views

Security update for erlang26

This update for erlang26 fixes the following issues Security issues: CVE-2026-21620: remote arbitrary read/write via TFTP relative path traversal bsc1258663. CVE-2026-23941: HTTP Request Smuggling in Erlang OTP bsc1259687. CVE-2026-23942: path traversal vulnerability in Erlang OTP bsc1259681...

9.1CVSS7.2AI score0.00644EPSS
Exploits0References26
OSV
OSV
added 2026/04/22 8:42 a.m.9 views

CLSA-2026-1776847322 curl: Fix of 3 CVEs

CVE-2022-27781: add limit of certificates which can be traversed breaking infinite loop in NSS cert verification - CVE-2023-27533: prevent TELNET option from IAC injection - CVE-2023-27534: fix SFTP path '' resolving discrepancy...

9.8CVSS5.8AI score0.02434EPSS
Exploits3References1
Tenable Nessus
Tenable Nessus
added 2026/04/16 12:0 a.m.5 views

SUSE SLES12 Security Update : libssh (SUSE-SU-2026:1344-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1344-1 advisory. - CVE-2026-3731: denial of service via out-of-bounds read in SFTP extension name handler bsc1259377. - CVE-2026-0964: SCP protocol path travers...

8.2CVSS6.4AI score0.00631EPSS
Exploits0References19
Tenable Nessus
Tenable Nessus
added 2026/02/14 12:0 a.m.3 views

SUSE SLES12: curl / libcurl-devel / libcurl4 / libcurl4-32bit / libnghttp2-14 / etc (SUSE-SU-2026:0494-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2026:0494-1 advisory. - CVE-2023-27534: Regression fix for SFTP path resolving discrepancy bsc1219273 Tenable has extracted the preceding description block directly from the...

8.8CVSS6.8AI score0.02195EPSS
Exploits1References4
OSV
OSV
added 2026/02/13 9:59 a.m.1 views

SUSE-SU-2026:0494-1 Security update for curl

This update for curl fixes the following issues: - CVE-2023-27534: Regression fix for SFTP path resolving discrepancy bsc1219273...

8.8CVSS7.3AI score0.02195EPSS
Exploits1References3
OSV
OSV
added 2024/06/12 11:47 a.m.18 views

SUSE-SU-2024:2009-1 Security update for curl

This update for curl fixes the following issues: - CVE-2023-27534: Properly resolve when used in a SFTP path. bsc1219273...

8.8CVSS6.7AI score0.02195EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2023/11/07 8:51 a.m.53 views

Moderate: Red Hat Security Advisory: curl security update

An update for curl is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

9.8CVSS6.7AI score0.02195EPSS
Exploits4References6
OSV
OSV
added 2023/09/24 10:16 p.m.34 views

MGASA-2023-0263 Updated curl packages fix security vulnerability

TELNET option IAC injection. CVE-2023-27533 SFTP path resolving discrepancy. CVE-2023-27534 FTP too eager connection reuse. CVE-2023-27535 GSS delegation too eager connection re-use. CVE-2023-27536 HSTS double free. CVE-2023-27537 SSH connection too eager reuse still. CVE-2023-27538 UAF in SSH...

9.8CVSS5.9AI score0.62246EPSS
Exploits11References17
IBM AIX
IBM AIX
added 2023/06/29 9:35 a.m.70 views

Multiple vulnerabilities cURL libcurl affect AIX

IBM SECURITY ADVISORY First Issued: Thu Jun 29 09:35:59 CDT 2023 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/curladvisory2.asc Security Bulletin: Multiple vulnerabilities cURL libcurl affect AIX...

9.8CVSS7.5AI score0.1654EPSS
Exploits9
Tenable Nessus
Tenable Nessus
added 2023/05/09 12:0 a.m.39 views

EulerOS 2.0 SP10 : curl (EulerOS-SA-2023-1798)

According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A vulnerability in input validation exists in curl 8.0 during communication using the TELNET protocol may allow an attacker to pass on maliciously...

9.8CVSS7.3AI score0.02195EPSS
Exploits5References6
OSV
OSV
added 2023/04/24 3:7 p.m.6 views

CLSA-2023-1682348848 curl: Fix of CVE-2023-27534

CVE-2023-27534: fix SFTP path '' resolving discrepancy - fix read off end of array for SCP home directory case...

8.8CVSS6.8AI score0.02195EPSS
Exploits1References1
OSV
OSV
added 2023/03/31 11:5 a.m.5 views

OESA-2023-1194 curl security update

cURL is a computer software project providing a library libcurl and command-line tool curl for transferring data using various protocols. Security Fixes: libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of them matches the setup. However,...

9.8CVSS8.9AI score0.02195EPSS
Exploits5References6
Tenable Nessus
Tenable Nessus
added 2023/03/28 12:0 a.m.48 views

Fedora 38 : curl (2023-0de03a9232)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-0de03a9232 advisory. - fix SSH connection too eager reuse still CVE-2023-27538 - fix HSTS double-free CVE-2023-27537 - fix GSS delegation too eager connection re-use...

9.8CVSS6.6AI score0.02195EPSS
Exploits6References7
OSV
OSV
added 2023/03/27 8:31 a.m.10 views

SUSE-SU-2023:1582-1 Security update for curl

This update for curl fixes the following issues: - CVE-2023-27533: Fixed TELNET option IAC injection bsc1209209. - CVE-2023-27534: Fixed SFTP path resolving discrepancy bsc1209210. - CVE-2023-27535: Fixed FTP too eager connection reuse bsc1209211. - CVE-2023-27536: Fixed GSS delegation too eager...

9.8CVSS7.3AI score0.02195EPSS
Exploits5References11
OSV
OSV
added 2023/03/21 5:34 p.m.11 views

SUSE-SU-2023:0865-1 Security update for curl

This update for curl fixes the following issues: - CVE-2023-27533: Fixed TELNET option IAC injection bsc1209209. - CVE-2023-27534: Fixed SFTP path resolving discrepancy bsc1209210. - CVE-2023-27535: Fixed FTP too eager connection reuse bsc1209211. - CVE-2023-27536: Fixed GSS delegation too eager...

9.8CVSS7.3AI score0.02195EPSS
Exploits5References11
Positive Technologies
Positive Technologies
added 2023/03/20 12:0 a.m.3 views

PT-2023-2319 · Curl +9 · Curl +9

Name of the Vulnerable Software and Affected Versions: curl versions prior to 8.0.0 Description: A path traversal vulnerability exists in the SFTP implementation of curl, where the tilde character is wrongly replaced when used as a prefix in the first path element. This flaw can be exploited by...

9.1CVSS7.3AI score0.62246EPSS
Exploits15References162
Rows per page
Query Builder