Lucene search
+L

132 matches found

Hacker One
Hacker One
added 2023/03/20 7:32 a.m.93 views

Internet Bug Bounty: CVE-2023-27533: TELNET option IAC injection

A vulnerability CVE-2023-27533 was found in curl versions 7.7 to 7.88.1 that allowed users to pass on user name and "telnet options" for server negotiation without proper input scrubbing, potentially allowing for the injection of unintended TELNET commands to the telnet connection. The severity o...

8.8CVSS7AI score0.01993EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2023/03/20 12:0 a.m.36 views

Slackware Linux 14.0 / 14.1 / 14.2 / 15.0 / current curl Multiple Vulnerabilities (SSA:2023-079-01)

The version of curl installed on the remote host is prior to 8.0.1. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-079-01 advisory. - A vulnerability in input validation exists in curl 8.0 during communication using the TELNET protocol may allow an attacker t...

9.8CVSS7.3AI score0.02195EPSS
Exploits6References6
FreeBSD
FreeBSD
added 2023/03/20 12:0 a.m.47 views

curl -- multiple vulnerabilities

Harry Sintonen reports: CVE-2023-27533 curl supports communicating using the TELNET protocol and as a part of this it offers users to pass on user name and "telnet options" for the server negotiation. Due to lack of proper input scrubbing and without it being the documented functionality, curl...

9.8CVSS7.2AI score0.02195EPSS
Exploits6References1
Hacker One
Hacker One
added 2023/03/03 7:13 p.m.164 views

curl: CVE-2023-27533: Telnet option IAC injection

A vulnerability existed in the CURLOPTTELNETOPTIONS option of the cURL library, which allowed an attacker to inject unintended TELNET commands to the telnet connection by escaping out of the telnet subnegotiation. This could allow the attacker to execute arbitrary OS commands on the target system...

8.8CVSS7.3AI score0.01993EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2023/02/15 6:20 a.m.5 views

SUSE CVE-2004-0411

The URI handlers in Konqueror for KDE 3.2.2 and earlier do not properly filter "-" characters that begin a hostname in a 1 telnet, 2 rlogin, 3 ssh, or 4 mailto URI, which allows remote attackers to manipulate the options that are passed to the associated programs, possibly to read arbitrary files...

7.5CVSS7.4AI score0.07778EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 3:22 a.m.4 views

SUSE CVE-2022-42915

curl before 7.86.0 has a double free. If curl is told to use an HTTP proxy for a transfer with a non-HTTPS URL, it sets up the connection to the remote server by issuing a CONNECT request to the proxy, and then tunnels the rest of the protocol through. An HTTP proxy might refuse this request HTTP...

7.3CVSS9AI score0.02927EPSS
Exploits0References3
OSV
OSV
added 2023/02/09 8:15 p.m.5 views

AZL-13284 CVE-2022-43552 affecting package curl for versions less than 7.86.0-3

A use after free vulnerability exists in curl 7.87.0. Curl can be asked to tunnel virtually all protocols it supports through an HTTP proxy. HTTP proxies can and often do deny such tunnel operations. When getting denied to tunnel the specific protocols SMB or TELNET, curl would use a heap-allocat...

5.9CVSS6.7AI score0.02511EPSS
Exploits1References1
OSV
OSV
added 2023/02/09 8:15 p.m.8 views

AZL-13280 CVE-2022-43552 affecting package cmake for versions less than 3.21.4-13

A use after free vulnerability exists in curl 7.87.0. Curl can be asked to tunnel virtually all protocols it supports through an HTTP proxy. HTTP proxies can and often do deny such tunnel operations. When getting denied to tunnel the specific protocols SMB or TELNET, curl would use a heap-allocat...

5.9CVSS6.7AI score0.02511EPSS
Exploits1References1
OSV
OSV
added 2023/02/09 8:15 p.m.5 views

DEBIAN-CVE-2022-43552

A use after free vulnerability exists in curl 7.87.0. Curl can be asked to tunnel virtually all protocols it supports through an HTTP proxy. HTTP proxies can and often do deny such tunnel operations. When getting denied to tunnel the specific protocols SMB or TELNET, curl would use a heap-allocat...

5.9CVSS6.5AI score0.02511EPSS
Exploits1References1
OSV
OSV
added 2023/01/06 11:4 a.m.3 views

OESA-2023-1007 curl security update

cURL is a computer software project providing a library libcurl and command-line tool curl for transferring data using various protocols. Security Fixes: A vulnerability was found in curl. In this issue, curl can be asked to tunnel all protocols virtually it supports through an HTTP proxy. HTTP...

7.5CVSS7AI score0.1654EPSS
Exploits2References3
OSV
OSV
added 2023/01/06 11:4 a.m.4 views

OESA-2023-1005 curl security update

cURL is a computer software project providing a library libcurl and command-line tool curl for transferring data using various protocols. Security Fixes: A vulnerability was found in curl. In this issue, curl can be asked to tunnel all protocols virtually it supports through an HTTP proxy. HTTP...

5.9CVSS7AI score0.02511EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/11/07 12:0 a.m.8 views

PT-2022-7575 · Curl +11 · Curl +11

Name of the Vulnerable Software and Affected Versions: curl versions prior to 7.87.0 Description: A use after free vulnerability exists in curl. The issue arises when curl is asked to tunnel virtually all protocols it supports through an HTTP proxy, and the proxy denies such tunnel operations for...

9.8CVSS6.2AI score0.62246EPSS
Exploits21References200
curl security advisories
curl security advisories
added 2022/10/26 8:0 a.m.8 views

HTTP proxy double free

If curl is told to use an HTTP proxy for a transfer with a non-HTTPS URL, it sets up the connection to the remote server by issuing a CONNECT request to the proxy, and then tunnels the rest of protocol through. An HTTP proxy might refuse this request HTTP proxies often only allow outgoing...

8.1CVSS7.2AI score0.02927EPSS
Exploits0References1Affected Software2
RedHat Linux
RedHat Linux
added 2022/01/04 8:38 a.m.43 views

Important: Red Hat Security Advisory: telnet security update

An update for telnet is now available for Red Hat Enterprise Linux 7.6 Advanced Update Support, Red Hat Enterprise Linux 7.6 Telco Extended Update Support, and Red Hat Enterprise Linux 7.6 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impac...

10CVSS7.3AI score0.74513EPSS
Exploits2References2
NVD
NVD
added 2021/11/04 4:15 p.m.31 views

CVE-2021-40113

Multiple vulnerabilities in the web-based management interface of the Cisco Catalyst Passive Optical Network PON Series Switches Optical Network Terminal ONT could allow an unauthenticated, remote attacker to perform the following actions: Log in with a default credential if the Telnet protocol i...

10CVSS0.04631EPSS
Exploits0References1
Prion
Prion
added 2021/11/04 4:15 p.m.22 views

Command injection

Multiple vulnerabilities in the web-based management interface of the Cisco Catalyst Passive Optical Network PON Series Switches Optical Network Terminal ONT could allow an unauthenticated, remote attacker to perform the following actions: Log in with a default credential if the Telnet protocol i...

7.5CVSS9.7AI score0.04631EPSS
Exploits0References1Affected Software5
Prion
Prion
added 2021/11/04 4:15 p.m.22 views

Command injection

Multiple vulnerabilities in the web-based management interface of the Cisco Catalyst Passive Optical Network PON Series Switches Optical Network Terminal ONT could allow an unauthenticated, remote attacker to perform the following actions: Log in with a default credential if the Telnet protocol i...

7.5CVSS9.6AI score0.01745EPSS
Exploits0References1Affected Software5
Cvelist
Cvelist
added 2021/11/04 3:35 p.m.31 views

CVE-2021-40113 Cisco Catalyst PON Series Switches Optical Network Terminal Vulnerabilities

Multiple vulnerabilities in the web-based management interface of the Cisco Catalyst Passive Optical Network PON Series Switches Optical Network Terminal ONT could allow an unauthenticated, remote attacker to perform the following actions: Log in with a default credential if the Telnet protocol i...

10CVSS10AI score0.04631EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/11/04 3:35 p.m.27 views

CVE-2021-40112 Cisco Catalyst PON Series Switches Optical Network Terminal Vulnerabilities

Multiple vulnerabilities in the web-based management interface of the Cisco Catalyst Passive Optical Network PON Series Switches Optical Network Terminal ONT could allow an unauthenticated, remote attacker to perform the following actions: Log in with a default credential if the Telnet protocol i...

10CVSS9.9AI score0.01386EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/11/04 3:35 p.m.7 views

CVE-2021-40112 Cisco Catalyst PON Series Switches Optical Network Terminal Vulnerabilities

Multiple vulnerabilities in the web-based management interface of the Cisco Catalyst Passive Optical Network PON Series Switches Optical Network Terminal ONT could allow an unauthenticated, remote attacker to perform the following actions: Log in with a default credential if the Telnet protocol i...

10CVSS7.4AI score0.01386EPSS
Exploits0References1
Rows per page
Query Builder