Lucene search
K

123 matches found

Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.25 views

EulerOS 2.0 SP9 : curl (EulerOS-SA-2023-3326)

According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 prox...

9.8CVSS7.8AI score0.78483EPSS
Exploits6References3
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.22 views

EulerOS Virtualization 2.9.1 : curl (EulerOS-SA-2024-1031)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to...

9.8CVSS7.7AI score0.78483EPSS
Exploits6References3
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.25 views

EulerOS 2.0 SP10 : curl (EulerOS-SA-2024-1079)

According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 prox...

9.8CVSS7.8AI score0.78483EPSS
Exploits6References3
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.66 views

EulerOS 2.0 SP11 : curl (EulerOS-SA-2023-3239)

According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 prox...

9.8CVSS7.8AI score0.78483EPSS
Exploits6References3
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.26 views

EulerOS 2.0 SP11 : curl (EulerOS-SA-2023-3267)

According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 prox...

9.8CVSS7.8AI score0.78483EPSS
Exploits6References3
OpenVAS
OpenVAS
added 2024/01/09 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2024-1055)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.8AI score0.78483EPSS
Exploits6References3
OpenVAS
OpenVAS
added 2024/01/05 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2024-1031)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.8AI score0.78483EPSS
Exploits6References3
OpenVAS
OpenVAS
added 2024/01/05 12:0 a.m.48 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2024-1005)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.8AI score0.78483EPSS
Exploits6References3
OpenVAS
OpenVAS
added 2023/12/12 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2023-3267)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.1AI score0.78483EPSS
Exploits6References3
Tenable Nessus
Tenable Nessus
added 2023/11/16 12:0 a.m.23 views

Oracle Linux 9 : curl (ELSA-2023-6745)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-6745 advisory. - fix cookie injection with none file CVE-2023-38546 Tenable has extracted the preceding description block directly from the Oracle Linux security...

9.8CVSS7.7AI score0.78483EPSS
Exploits6References3
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.184 views

RHEL 9 : curl (RHSA-2023:6745)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:6745 advisory. The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTT...

9.8CVSS8AI score0.78483EPSS
Exploits6References6
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.24 views

Fedora 39 : curl (2023-0f8d1871d8)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-0f8d1871d8 advisory. - fix cookie injection with none file CVE-2023-38546 - fix SOCKS5 heap buffer overflow CVE-2023-38545 Tenable has extracted the preceding descriptio...

9.8CVSS7.9AI score0.78483EPSS
Exploits6References3
Tenable Nessus
Tenable Nessus
added 2023/10/27 12:0 a.m.36 views

Fedora 37 : curl (2023-fef2b8da32)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-fef2b8da32 advisory. - fix cookie injection with none file CVE-2023-38546 - fix SOCKS5 heap buffer overflow CVE-2023-38545 Tenable has extracted the preceding descriptio...

9.8CVSS7.9AI score0.78483EPSS
Exploits6References3
Tenable Nessus
Tenable Nessus
added 2023/10/24 12:0 a.m.30 views

Rocky Linux 9 : curl (RLSA-2023:5763)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:5763 advisory. - This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 proxy to...

9.8CVSS7.8AI score0.78483EPSS
Exploits6References5
OSV
OSV
added 2023/10/18 4:15 a.m.6 views

AZL-31288 CVE-2023-38545 affecting package curl for versions less than 8.3.0-2

This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allow that to resolve the address instead of it getting done by curl itself, the maximum length that host name can be is 255 bytes. If the host na...

9.8CVSS7AI score0.78483EPSS
Exploits6References1
NVD
NVD
added 2023/10/18 4:15 a.m.25 views

CVE-2023-38545

This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allow that to resolve the address instead of it getting done by curl itself, the maximum length that host name can be is 255 bytes. If the host na...

9.8CVSS9.7AI score0.78483EPSS
Exploits6References21
OSV
OSV
added 2023/10/18 4:15 a.m.6 views

AZL-31501 CVE-2023-38545 affecting package cmake for versions less than 3.21.4-10

This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allow that to resolve the address instead of it getting done by curl itself, the maximum length that host name can be is 255 bytes. If the host na...

9.8CVSS7AI score0.78483EPSS
Exploits6References1
Prion
Prion
added 2023/10/18 4:15 a.m.28 views

Heap overflow

This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allow that to resolve the address instead of it getting done by curl itself, the maximum length that host name can be is 255 bytes. If the host na...

7.5CVSS9.3AI score0.78483EPSS
Exploits6References12Affected Software2
OSV
OSV
added 2023/10/18 3:52 a.m.59 views

CVE-2023-38545

This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allow that to resolve the address instead of it getting done by curl itself, the maximum length that host name can be is 255 bytes. If the host na...

8.8CVSS9AI score0.78483EPSS
Exploits6References23
Cvelist
Cvelist
added 2023/10/18 3:52 a.m.108 views

CVE-2023-38545

This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allow that to resolve the address instead of it getting done by curl itself, the maximum length that host name can be is 255 bytes. If the host na...

9.7AI score0.78483EPSS
Exploits6References13
Rows per page
Query Builder