Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4 matches found

SUSE Linux
SUSE Linuxadded 2025/02/03 9:7 a.m.1 views

Security update for curl

This update for curl fixes the following issues: CVE-2024-9681: Fixed HSTS subdomain overwrites parent cache entry bsc1232528 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the comma...

6.9CVSS7.3AI score0.00745EPSS
Exploits1References4
OSV
OSVadded 2024/12/19 10:22 a.m.9 views

SUSE-SU-2024:3927-2 Security update for curl

This update for curl fixes the following issues: - CVE-2024-9681: Fixed HSTS subdomain overwrites parent cache entry bsc1232528...

6.5CVSS6.5AI score0.00745EPSS
Exploits1References3
OSV
OSVadded 2024/11/18 3:10 p.m.1 views

USN-7104-1 curl vulnerability

It was discovered that curl could overwrite the HSTS expiry of the parent domain with the subdomain's HSTS entry. This could lead to curl switching back to insecure HTTP earlier than otherwise intended, resulting in information exposure...

6.5CVSS7.2AI score0.00745EPSS
Exploits1References2
Hacker One
Hacker Oneadded 2024/10/07 4:58 p.m.6 views

curl: CVE-2024-9681: HSTS subdomain overwrites parent cache entry

The HSTS HTTP Strict Transport Security cache in the curl web client can be overwritten by a subdomain, causing the parent domain's HSTS expiration time to be set incorrectly. This issue was discovered in curl versions 8.10.1 and 8.11.0-DEV...

6.5CVSS6.4AI score0.00745EPSS
Exploits1
Rows per page
Query Builder