Lucene search
K

295 matches found

Kitploit
Kitploit
added 2025/05/08 12:30 p.m.700 views

ByeDPIAndroid - App To Bypass Censorship On Android

Android application that runs a local VPN service to bypass DPI Deep Packet Inspection and censorship. This application runs a SOCKS5 proxy ByeDPI and redirects all traffic through it. Installation Or use Obtainium 1. Install Obtainium 2. Add the app by URL:...

7.2AI score
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2024/06/26 12:0 a.m.34 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-6.5.6)

The version of AOS installed on the remote host is prior to 6.5.6. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-6.5.6 advisory. - CVE-2023-38546 is a cookie injection vulnerability in the curleasyduphandle, a function in libcurl that duplicates easy handles...

9.8CVSS8.2AI score0.78483EPSS
Exploits23References14
The Hacker News
The Hacker News
added 2024/06/03 7:34 a.m.18 views

Andariel Hackers Target South Korean Institutes with New Dora RAT Malware

The North Korea-linked threat actor known as Andariel has been observed using a new Golang-based backdoor called Dora RAT in its attacks targeting educational institutes, manufacturing firms, and construction businesses in South Korea. "Keylogger, Infostealer, and proxy tools on top of the backdo...

7.5AI score
Exploits0
RedHat Linux
RedHat Linux
added 2024/04/23 5:29 p.m.8 views

curl: heap based buffer overflow in the SOCKS5 proxy handshake

A heap-based buffer overflow flaw was found in the SOCKS5 proxy handshake in the Curl package. If Curl is unable to resolve the address itself, it passes the hostname to the SOCKS5 proxy. However, the maximum length of the hostname that can be passed is 255 bytes. If the hostname is longer, then...

9.8CVSS7.3AI score0.78483EPSS
Exploits6References5
Tenable Nessus
Tenable Nessus
added 2024/04/11 12:0 a.m.196 views

Juniper Junos OS Multiple Vulnerabilities (JSA79108)

The version of Junos OS installed on the remote host is affected by multiple vulnerabilities as referenced in the JSA79108 advisory. - This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allow that ...

9.8CVSS7.8AI score0.78483EPSS
Exploits9References13
OSV
OSV
added 2024/04/05 12:0 p.m.8 views

RUSTSEC-2024-0334 `libp2p-tokio-socks5` is unmaintained

Note the repository was archived without an issue so we link directly to the commit that marked the repository as unmaintained. To the best of the original authors knowledge the crate has no vulnerabilities as of the last release, it is just unmaintained due to laziness - new maintainer welcome...

7.2AI score
Exploits0References3
RustSec
RustSec
added 2024/04/05 12:0 p.m.9 views

`libp2p-tokio-socks5` is unmaintained

Note the repository was archived without an issue so we link directly to the commit that marked the repository as unmaintained. To the best of the original authors knowledge the crate has no vulnerabilities as of the last release, it is just unmaintained due to laziness - new maintainer welcome...

7.2AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2024/04/04 10:41 a.m.32 views

Security Bulletin: Multiple publicly disclosed libcurl vulnerabilities affect IBM Safer Payments

Summary Libcurl is used by IBM Safer Payments as part of the AVRO support for Kafka. These vulnerabilities have been addressed. Vulnerability Details CVEID:CVE-2023-38039 DESCRIPTION: cURL libcurl is vulnerable to a denial of service, caused by not limiting the number and size of headers accept i...

9.8CVSS9.6AI score0.78483EPSS
Exploits7Affected Software1
Rosalinux
Rosalinux
added 2024/03/26 11:18 a.m.71 views

Advisory ROSA-SA-2024-2379

software: curl 8.4.0 WASP: ROSA-CHROME packageevrstring: curl-8.4.0-1.src.rpm CVE-ID: CVE-2023-38545 BDU-ID: 2023-06576 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the SOCKS5 protocol implementation of the cURL command line utility is related to an operation exceeding buffer boundaries in memory...

9.8CVSS8.1AI score0.78483EPSS
Exploits6
OpenVAS
OpenVAS
added 2024/03/21 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2024-1439)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.78483EPSS
Exploits7References3
Tenable Nessus
Tenable Nessus
added 2024/03/21 12:0 a.m.38 views

EulerOS Virtualization 2.11.1 : curl (EulerOS-SA-2024-1411)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to...

9.8CVSS7.7AI score0.78483EPSS
Exploits7References4
GithubExploit
GithubExploit
added 2024/03/19 1:45 p.m.341 views

Exploit for Out-of-bounds Write in Haxx Libcurl

CVE-2023-38545: Curl Vulnerability Proof of Concept This repos...

9.8CVSS8.1AI score0.78483EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2024/03/19 12:0 a.m.42 views

Fortinet Fortigate Curl and libcurl CVE-2023-38545 and CVE-2023-38546 vulnerabilities (FG-IR-23-385)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the FG-IR-23-385 advisory. - This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along...

9.8CVSS7.8AI score0.78483EPSS
Exploits6References3
Tenable Nessus
Tenable Nessus
added 2024/03/19 12:0 a.m.25 views

Fortinet FortiProxy curl and libcurl Multiple Vulnerabilities (FG-IR-23-385)

The version of FortiProxy installed on the remote host is 7.0.x, 7.2.x prior to 7.2.8, or 7.4.x prior to 7.4.2. It is, therefore, affected by multiple vulnerabilities as referenced in the FG-IR-23-385 advisory. - This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. Whe...

9.8CVSS7.7AI score0.78483EPSS
Exploits6References3
OpenVAS
OpenVAS
added 2024/03/14 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2024-1355)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.8AI score0.78483EPSS
Exploits6References3
Tenable Nessus
Tenable Nessus
added 2024/03/14 12:0 a.m.25 views

EulerOS Virtualization 2.10.0 : curl (EulerOS-SA-2024-1376)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to...

9.8CVSS7.7AI score0.78483EPSS
Exploits6References3
Tenable Nessus
Tenable Nessus
added 2024/03/14 12:0 a.m.23 views

EulerOS Virtualization 2.10.1 : curl (EulerOS-SA-2024-1355)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to...

9.8CVSS7.7AI score0.78483EPSS
Exploits6References3
Tenable Nessus
Tenable Nessus
added 2024/02/29 12:0 a.m.41 views

CentOS 9 : curl-7.76.1-28.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the curl-7.76.1-28.el9 build changelog. - This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 proxy...

9.8CVSS7.7AI score0.78483EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2024/02/08 12:0 a.m.51 views

HCL BigFix Server 9.5.x < 9.5.24 / 10.0.x < 10.0.10 / 11.0.x < 11.0.1 Multiple Vulnerabilities (KB0110209)

The version of HCL BigFix Server installed on the remote host is 9.5.x prior to 9.5.24, 10.0.x prior to 10.0.10 or 11.x prior to 11.0.1. It is, therefore, affected by multiple vulnerabilities as referenced in the KB0110209 advisory. - Heap-based buffer overflow vulnerability in the SOCKS5 proxy...

9.8CVSS8.1AI score0.78483EPSS
Exploits6References9
The Hacker News
The Hacker News
added 2024/01/25 2:23 p.m.32 views

SystemBC Malware's C2 Server Analysis Exposes Payload Delivery Tricks

Cybersecurity researchers have shed light on the command-and-control C2 server workings of a known malware family called SystemBC. "SystemBC can be purchased on underground marketplaces and is supplied in an archive containing the implant, a command-and-control C2 server, and a web administration...

7.2AI score
Exploits0
Rows per page
Query Builder