| 0 |
| url |
VCID-1a1k-d4ez-ybdu |
| vulnerability_id |
VCID-1a1k-d4ez-ybdu |
| summary |
When curl is used to retrieve and parse cookies from a HTTP(S) server, itaccepts cookies using control codes that when later are sent back to a HTTPserver might make the server return 400 responses. Effectively allowing a"sister site" to deny service to all siblings. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.85.0 |
| purl |
pkg:generic/curl.se/curl@7.85.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 1 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 2 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 3 |
| vulnerability |
VCID-287k-bzqy-n7ag |
|
| 4 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 5 |
| vulnerability |
VCID-3p2z-61gq-muhs |
|
| 6 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 7 |
| vulnerability |
VCID-6en5-etsd-2bce |
|
| 8 |
| vulnerability |
VCID-6ggz-pa5t-77c4 |
|
| 9 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 10 |
| vulnerability |
VCID-85qb-zec7-subc |
|
| 11 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 12 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 13 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 14 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 15 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 16 |
| vulnerability |
VCID-cfry-nx5h-kudv |
|
| 17 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 18 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 19 |
| vulnerability |
VCID-ffmg-djmk-57hn |
|
| 20 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 21 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 22 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 23 |
| vulnerability |
VCID-h4nw-va5b-23ef |
|
| 24 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 25 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 26 |
| vulnerability |
VCID-k3nv-gf9b-5ua2 |
|
| 27 |
| vulnerability |
VCID-k5vr-1fmp-sqbw |
|
| 28 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 29 |
| vulnerability |
VCID-mpuf-pp6z-q3d6 |
|
| 30 |
| vulnerability |
VCID-ns58-vmsz-5ued |
|
| 31 |
| vulnerability |
VCID-nwvb-d466-4uaa |
|
| 32 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 33 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 34 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 35 |
| vulnerability |
VCID-razg-yr7y-ukgd |
|
| 36 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 37 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 38 |
| vulnerability |
VCID-u1p8-s8vm-3yer |
|
| 39 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 40 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 41 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 42 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 43 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 44 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 45 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.85.0 |
|
|
| aliases |
CVE-2022-35252
|
| risk_score |
1.4 |
| exploitability |
0.5 |
| weighted_severity |
2.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-1a1k-d4ez-ybdu |
|
| 1 |
| url |
VCID-1b5g-9trz-7ufb |
| vulnerability_id |
VCID-1b5g-9trz-7ufb |
| summary |
curl before version 7.52.0 is vulnerable to a buffer overflow when doing a large floating point output in libcurl's implementation of the printf() functions. If there are any application that accepts a format string from the outside without necessary input filtering, it could allow remote attacks. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.52.0 |
| purl |
pkg:generic/curl.se/curl@7.52.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 3 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 4 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 5 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 6 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 7 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 8 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 9 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 10 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 11 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 12 |
| vulnerability |
VCID-53st-1j3z-h7by |
|
| 13 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 14 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 15 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 16 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 17 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 18 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 19 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 20 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 21 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 22 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 23 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 24 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 25 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 26 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 27 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 28 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 29 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 30 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 31 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 32 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 33 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 34 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 35 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 36 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 37 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 38 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 39 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 40 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 41 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 42 |
| vulnerability |
VCID-k79t-tesa-jfck |
|
| 43 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 44 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 45 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 46 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 47 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 48 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 49 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 50 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 51 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 52 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 53 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 54 |
| vulnerability |
VCID-raxd-4nxj-gkhp |
|
| 55 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 56 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 57 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 58 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 59 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 60 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 61 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 62 |
| vulnerability |
VCID-uj78-2cgz-zbdb |
|
| 63 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 64 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 65 |
| vulnerability |
VCID-w63e-dku9-mqe9 |
|
| 66 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 67 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 68 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 69 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 70 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 71 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 72 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 73 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.52.0 |
|
|
| aliases |
CVE-2016-9586
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-1b5g-9trz-7ufb |
|
| 2 |
| url |
VCID-1dw3-33ju-jkbs |
| vulnerability_id |
VCID-1dw3-33ju-jkbs |
| summary |
When libcurl is asked to perform automatic gzip decompression of content-encoded HTTP responses with the `CURLOPT_ACCEPT_ENCODING` option, **using zlib 1.2.0.3 or older**, an attacker-controlled integer overflow would make libcurl perform a buffer overflow. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@8.12.0 |
| purl |
pkg:generic/curl.se/curl@8.12.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 1 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 2 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 3 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 4 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 5 |
| vulnerability |
VCID-bp56-gy66-mqae |
|
| 6 |
| vulnerability |
VCID-ezve-gc2h-qyga |
|
| 7 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 8 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 9 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 10 |
| vulnerability |
VCID-gux4-dncg-h7a6 |
|
| 11 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 12 |
| vulnerability |
VCID-ns6z-wp2x-fkdq |
|
| 13 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 14 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 15 |
| vulnerability |
VCID-t45k-skv6-cfg2 |
|
| 16 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 17 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 18 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 19 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.12.0 |
|
|
| aliases |
CVE-2025-0725
|
| risk_score |
1.8 |
| exploitability |
0.5 |
| weighted_severity |
3.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-1dw3-33ju-jkbs |
|
| 3 |
| url |
VCID-1kpz-55f1-f7dj |
| vulnerability_id |
VCID-1kpz-55f1-f7dj |
| summary |
curl before version 7.61.1 is vulnerable to a buffer overrun in the NTLM authentication code. The internal function Curl_ntlm_core_mk_nt_hash multiplies the length of the password by two (SUM) to figure out how large temporary storage area to allocate from the heap. The length value is then subsequently used to iterate over the password and generate output into the allocated storage buffer. On systems with a 32 bit size_t, the math to calculate SUM triggers an integer overflow when the password length exceeds 2GB (2^31 bytes). This integer overflow usually causes a very small buffer to actually get allocated instead of the intended very huge one, making the use of that buffer end up in a heap buffer overflow. (This bug is almost identical to CVE-2017-8816.) |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.61.1 |
| purl |
pkg:generic/curl.se/curl@7.61.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 3 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 4 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 5 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 6 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 7 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 8 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 9 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 10 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 11 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 12 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 13 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 14 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 15 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 16 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 17 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 18 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 19 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 20 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 21 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 22 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 23 |
| vulnerability |
VCID-byzw-xw9s-pkga |
|
| 24 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 25 |
| vulnerability |
VCID-cfry-nx5h-kudv |
|
| 26 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 27 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 28 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 29 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 30 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 31 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 32 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 33 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 34 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 35 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 36 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 37 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 38 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 39 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 40 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 41 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 42 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 43 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 44 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 45 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 46 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 47 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 48 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 49 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 50 |
| vulnerability |
VCID-ubnn-z97k-47gw |
|
| 51 |
| vulnerability |
VCID-uj78-2cgz-zbdb |
|
| 52 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 53 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 54 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 55 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 56 |
| vulnerability |
VCID-wbwx-5vg3-uqcd |
|
| 57 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 58 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 59 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 60 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 61 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 62 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.61.1 |
|
|
| aliases |
CVE-2018-14618
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-1kpz-55f1-f7dj |
|
| 4 |
| url |
VCID-2u6v-6vm9-z3by |
| vulnerability_id |
VCID-2u6v-6vm9-z3by |
| summary |
The curl_easy_duphandle function in libcurl 7.17.1 through 7.38.0, when running with the CURLOPT_COPYPOSTFIELDS option, does not properly copy HTTP POST data for an easy handle, which triggers an out-of-bounds read that allows remote web servers to read sensitive memory information. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.39.0 |
| purl |
pkg:generic/curl.se/curl@7.39.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1y6d-7vfu-ybb3 |
|
| 7 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 8 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 9 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 10 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 11 |
| vulnerability |
VCID-3s4s-6c3v-7kgn |
|
| 12 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 13 |
| vulnerability |
VCID-3xcn-bur1-tkdt |
|
| 14 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 15 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 16 |
| vulnerability |
VCID-51ac-1jc2-vfed |
|
| 17 |
| vulnerability |
VCID-5sem-gndf-97e6 |
|
| 18 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 19 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 20 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 21 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 22 |
| vulnerability |
VCID-6fv7-7u2t-gfgb |
|
| 23 |
| vulnerability |
VCID-6rk4-vb5u-bkg6 |
|
| 24 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 25 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 26 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 27 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 28 |
| vulnerability |
VCID-8j6v-xbhy-7uc2 |
|
| 29 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 30 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 31 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 32 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 33 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 34 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 35 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 36 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 37 |
| vulnerability |
VCID-cdar-9qhw-hke7 |
|
| 38 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 39 |
| vulnerability |
VCID-dndt-tapy-23d2 |
|
| 40 |
| vulnerability |
VCID-f276-amhj-9yfx |
|
| 41 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 42 |
| vulnerability |
VCID-f922-jx9w-mbc5 |
|
| 43 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 44 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 45 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 46 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 47 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 48 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 49 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 50 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 51 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 52 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 53 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 54 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 55 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 56 |
| vulnerability |
VCID-mq44-5pmp-2qhh |
|
| 57 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 58 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 59 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 60 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 61 |
| vulnerability |
VCID-p9v4-nweu-vydg |
|
| 62 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 63 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 64 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 65 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 66 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 67 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 68 |
| vulnerability |
VCID-rfdp-gsgs-eubq |
|
| 69 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 70 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 71 |
| vulnerability |
VCID-s6gu-gm97-fyfk |
|
| 72 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 73 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 74 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 75 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 76 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 77 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 78 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 79 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 80 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 81 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 82 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 83 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 84 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 85 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 86 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 87 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 88 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 89 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 90 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 91 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 92 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.39.0 |
|
|
| aliases |
CVE-2014-3707
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2u6v-6vm9-z3by |
|
| 5 |
|
| 6 |
| url |
VCID-5svr-3vv9-mqea |
| vulnerability_id |
VCID-5svr-3vv9-mqea |
| summary |
When doing a TFTP transfer and curl/libcurl is given a URL that contains a very long file name (longer than about 515 bytes), the file name is truncated to fit within the buffer boundaries, but the buffer size is still wrongly updated to use the untruncated length. This too large value is then used in the sendto() call, making curl attempt to send more data than what is actually put into the buffer. The endto() function will then read beyond the end of the heap based buffer. A malicious HTTP(S) server could redirect a vulnerable libcurl-using client to a crafted TFTP URL (if the client hasn't restricted which protocols it allows redirects to) and trick it to send private memory contents to a remote server over UDP. Limit curl's redirect protocols with --proto-redir and libcurl's with CURLOPT_REDIR_PROTOCOLS. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.55.0 |
| purl |
pkg:generic/curl.se/curl@7.55.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 3 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 4 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 5 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 6 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 7 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 8 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 9 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 10 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 11 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 12 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 13 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 14 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 15 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 16 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 17 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 18 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 19 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 20 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 21 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 22 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 23 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 24 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 25 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 26 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 27 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 28 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 29 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 30 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 31 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 32 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 33 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 34 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 35 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 36 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 37 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 38 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 39 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 40 |
| vulnerability |
VCID-kae8-wmf2-2kf1 |
|
| 41 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 42 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 43 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 44 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 45 |
| vulnerability |
VCID-p7mn-a632-c3ag |
|
| 46 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 47 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 48 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 49 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 50 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 51 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 52 |
| vulnerability |
VCID-raxd-4nxj-gkhp |
|
| 53 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 54 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 55 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 56 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 57 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 58 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 59 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 60 |
| vulnerability |
VCID-uj78-2cgz-zbdb |
|
| 61 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 62 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 63 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 64 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 65 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 66 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 67 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 68 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 69 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.55.0 |
|
|
| aliases |
CVE-2017-1000100
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-5svr-3vv9-mqea |
|
| 7 |
| url |
VCID-5xjw-u8ad-n3g5 |
| vulnerability_id |
VCID-5xjw-u8ad-n3g5 |
| summary |
multiple issues |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.51.0 |
| purl |
pkg:generic/curl.se/curl@7.51.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 7 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 8 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 9 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 10 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 11 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 12 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 13 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 14 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 15 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 16 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 17 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 18 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 19 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 20 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 21 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 22 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 23 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 24 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 25 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 26 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 27 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 28 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 29 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 30 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 31 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 32 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 33 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 34 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 35 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 36 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 37 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 38 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 39 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 40 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 41 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 42 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 43 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 44 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 45 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 46 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 47 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 48 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 49 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 50 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 51 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 52 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 53 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 54 |
| vulnerability |
VCID-raxd-4nxj-gkhp |
|
| 55 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 56 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 57 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 58 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 59 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 60 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 61 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 62 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 63 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 64 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 65 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 66 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 67 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 68 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 69 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 70 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 71 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 72 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0 |
|
|
| aliases |
CVE-2016-8615
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-5xjw-u8ad-n3g5 |
|
| 8 |
| url |
VCID-64mt-9155-tkbv |
| vulnerability_id |
VCID-64mt-9155-tkbv |
| summary |
The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man-in-the-middle attackers to obtain plaintext HTTP headers via a blockwise chosen-boundary attack (BCBA) on an HTTPS session, in conjunction with JavaScript code that uses (1) the HTML5 WebSocket API, (2) the Java URLConnection API, or (3) the Silverlight WebClient API, aka a "BEAST" attack. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.24.0 |
| purl |
pkg:generic/curl.se/curl@7.24.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 1 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 2 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 3 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 4 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 5 |
| vulnerability |
VCID-2u6v-6vm9-z3by |
|
| 6 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 7 |
| vulnerability |
VCID-3s4s-6c3v-7kgn |
|
| 8 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 9 |
| vulnerability |
VCID-51ac-1jc2-vfed |
|
| 10 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 11 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 12 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 13 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 14 |
| vulnerability |
VCID-6fv7-7u2t-gfgb |
|
| 15 |
| vulnerability |
VCID-6rk4-vb5u-bkg6 |
|
| 16 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 17 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 18 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 19 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 20 |
| vulnerability |
VCID-8j6v-xbhy-7uc2 |
|
| 21 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 22 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 23 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 24 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 25 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 26 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 27 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 28 |
| vulnerability |
VCID-cdar-9qhw-hke7 |
|
| 29 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 30 |
| vulnerability |
VCID-cmcn-f8ws-q3h2 |
|
| 31 |
| vulnerability |
VCID-dndt-tapy-23d2 |
|
| 32 |
| vulnerability |
VCID-e4qf-7gqs-qyg3 |
|
| 33 |
| vulnerability |
VCID-f276-amhj-9yfx |
|
| 34 |
| vulnerability |
VCID-f922-jx9w-mbc5 |
|
| 35 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 36 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 37 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 38 |
| vulnerability |
VCID-g72q-eedp-aufb |
|
| 39 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 40 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 41 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 42 |
| vulnerability |
VCID-hhu3-dp3m-gbgm |
|
| 43 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 44 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 45 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 46 |
| vulnerability |
VCID-nkmd-xb13-mbg9 |
|
| 47 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 48 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 49 |
| vulnerability |
VCID-p9v4-nweu-vydg |
|
| 50 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 51 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 52 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 53 |
| vulnerability |
VCID-q9ht-ra39-kuef |
|
| 54 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 55 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 56 |
| vulnerability |
VCID-rfdp-gsgs-eubq |
|
| 57 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 58 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 59 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 60 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 61 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 62 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 63 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 64 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 65 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 66 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 67 |
| vulnerability |
VCID-tyqp-e8cp-dbbm |
|
| 68 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 69 |
| vulnerability |
VCID-uh5a-zcds-3bcc |
|
| 70 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 71 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 72 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 73 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 74 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 75 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 76 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 77 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 78 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 79 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.24.0 |
|
|
| aliases |
CVE-2011-3389
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-64mt-9155-tkbv |
|
| 9 |
| url |
VCID-6fv7-7u2t-gfgb |
| vulnerability_id |
VCID-6fv7-7u2t-gfgb |
| summary |
cURL before 7.47.0 on Windows allows attackers to write to arbitrary files in the current working directory on a different drive via a colon in a remote file name. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.47.0 |
| purl |
pkg:generic/curl.se/curl@7.47.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1y6d-7vfu-ybb3 |
|
| 7 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 8 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 9 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 10 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 11 |
| vulnerability |
VCID-3s4s-6c3v-7kgn |
|
| 12 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 13 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 14 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 15 |
| vulnerability |
VCID-51ac-1jc2-vfed |
|
| 16 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 17 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 18 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 19 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 20 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 21 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 22 |
| vulnerability |
VCID-6rk4-vb5u-bkg6 |
|
| 23 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 24 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 25 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 26 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 27 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 28 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 29 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 30 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 31 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 32 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 33 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 34 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 35 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 36 |
| vulnerability |
VCID-dndt-tapy-23d2 |
|
| 37 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 38 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 39 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 40 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 41 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 42 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 43 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 44 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 45 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 46 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 47 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 48 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 49 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 50 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 51 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 52 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 53 |
| vulnerability |
VCID-mq44-5pmp-2qhh |
|
| 54 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 55 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 56 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 57 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 58 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 59 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 60 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 61 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 62 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 63 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 64 |
| vulnerability |
VCID-rfdp-gsgs-eubq |
|
| 65 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 66 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 67 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 68 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 69 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 70 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 71 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 72 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 73 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 74 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 75 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 76 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 77 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 78 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 79 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 80 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 81 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 82 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 83 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 84 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 85 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 86 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 87 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 88 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 89 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.47.0 |
|
|
| aliases |
CVE-2016-0754
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-6fv7-7u2t-gfgb |
|
| 10 |
| url |
VCID-6rk4-vb5u-bkg6 |
| vulnerability_id |
VCID-6rk4-vb5u-bkg6 |
| summary |
curl and libcurl before 7.50.1 do not check the client certificate when choosing the TLS connection to reuse, which might allow remote attackers to hijack the authentication of the connection by leveraging a previously created connection with a different client certificate. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.50.1 |
| purl |
pkg:generic/curl.se/curl@7.50.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1y6d-7vfu-ybb3 |
|
| 7 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 8 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 9 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 10 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 11 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 12 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 13 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 14 |
| vulnerability |
VCID-51ac-1jc2-vfed |
|
| 15 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 16 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 17 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 18 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 19 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 20 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 21 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 22 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 23 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 24 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 25 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 26 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 27 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 28 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 29 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 30 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 31 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 32 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 33 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 34 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 35 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 36 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 37 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 38 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 39 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 40 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 41 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 42 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 43 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 44 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 45 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 46 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 47 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 48 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 49 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 50 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 51 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 52 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 53 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 54 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 55 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 56 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 57 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 58 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 59 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 60 |
| vulnerability |
VCID-raxd-4nxj-gkhp |
|
| 61 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 62 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 63 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 64 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 65 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 66 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 67 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 68 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 69 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 70 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 71 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 72 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 73 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 74 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 75 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 76 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 77 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 78 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 79 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 80 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 81 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 82 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 83 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 84 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 85 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.50.1 |
|
|
| aliases |
CVE-2016-5420
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-6rk4-vb5u-bkg6 |
|
| 11 |
| url |
VCID-738z-myg9-37hr |
| vulnerability_id |
VCID-738z-myg9-37hr |
| summary |
multiple issues |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.83.0 |
| purl |
pkg:generic/curl.se/curl@7.83.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 1 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 2 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 3 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 4 |
| vulnerability |
VCID-287k-bzqy-n7ag |
|
| 5 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 6 |
| vulnerability |
VCID-3p2z-61gq-muhs |
|
| 7 |
| vulnerability |
VCID-5m9y-9y57-kqg6 |
|
| 8 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 9 |
| vulnerability |
VCID-6en5-etsd-2bce |
|
| 10 |
| vulnerability |
VCID-6ggz-pa5t-77c4 |
|
| 11 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 12 |
| vulnerability |
VCID-7z3h-9pk3-rqct |
|
| 13 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 14 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 15 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 16 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 17 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 18 |
| vulnerability |
VCID-cfry-nx5h-kudv |
|
| 19 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 20 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 21 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 22 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 23 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 24 |
| vulnerability |
VCID-h4nw-va5b-23ef |
|
| 25 |
| vulnerability |
VCID-hb4z-s871-d7ck |
|
| 26 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 27 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 28 |
| vulnerability |
VCID-k5vr-1fmp-sqbw |
|
| 29 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 30 |
| vulnerability |
VCID-mqzd-mcw5-s3h6 |
|
| 31 |
| vulnerability |
VCID-mray-vkqx-5ka7 |
|
| 32 |
| vulnerability |
VCID-ns58-vmsz-5ued |
|
| 33 |
| vulnerability |
VCID-nwvb-d466-4uaa |
|
| 34 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 35 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 36 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 37 |
| vulnerability |
VCID-razg-yr7y-ukgd |
|
| 38 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 39 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 40 |
| vulnerability |
VCID-tzs5-qzhn-rqbk |
|
| 41 |
| vulnerability |
VCID-u1p8-s8vm-3yer |
|
| 42 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 43 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 44 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 45 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 46 |
| vulnerability |
VCID-wbwx-5vg3-uqcd |
|
| 47 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 48 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 49 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 50 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 51 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 52 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.83.0 |
|
|
| aliases |
CVE-2022-27774
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-738z-myg9-37hr |
|
| 12 |
| url |
VCID-7wqd-99h2-e7hk |
| vulnerability_id |
VCID-7wqd-99h2-e7hk |
| summary |
When doing multi-threaded LDAPS transfers (LDAP over TLS) with libcurl, changing TLS options in one thread would inadvertently change them globally and therefore possibly also affect other concurrently setup transfers. Disabling certificate verification for a specific transfer could unintentionally disable the feature for other threads as well. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2025-14017
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7wqd-99h2-e7hk |
|
| 13 |
| url |
VCID-8j6v-xbhy-7uc2 |
| vulnerability_id |
VCID-8j6v-xbhy-7uc2 |
| summary |
cURL and libcurl 7.10.6 through 7.41.0 does not properly re-use NTLM connections, which allows remote attackers to connect as other users via an unauthenticated request, a similar issue to CVE-2014-0015. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.42.0 |
| purl |
pkg:generic/curl.se/curl@7.42.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1y6d-7vfu-ybb3 |
|
| 7 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 8 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 9 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 10 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 11 |
| vulnerability |
VCID-3s4s-6c3v-7kgn |
|
| 12 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 13 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 14 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 15 |
| vulnerability |
VCID-51ac-1jc2-vfed |
|
| 16 |
| vulnerability |
VCID-5m1h-d3cm-dqfu |
|
| 17 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 18 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 19 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 20 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 21 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 22 |
| vulnerability |
VCID-6fv7-7u2t-gfgb |
|
| 23 |
| vulnerability |
VCID-6rk4-vb5u-bkg6 |
|
| 24 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 25 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 26 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 27 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 28 |
| vulnerability |
VCID-9rvz-5w86-u7e5 |
|
| 29 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 30 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 31 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 32 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 33 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 34 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 35 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 36 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 37 |
| vulnerability |
VCID-cdar-9qhw-hke7 |
|
| 38 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 39 |
| vulnerability |
VCID-dndt-tapy-23d2 |
|
| 40 |
| vulnerability |
VCID-f276-amhj-9yfx |
|
| 41 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 42 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 43 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 44 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 45 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 46 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 47 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 48 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 49 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 50 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 51 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 52 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 53 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 54 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 55 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 56 |
| vulnerability |
VCID-mq44-5pmp-2qhh |
|
| 57 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 58 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 59 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 60 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 61 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 62 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 63 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 64 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 65 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 66 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 67 |
| vulnerability |
VCID-rfdp-gsgs-eubq |
|
| 68 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 69 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 70 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 71 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 72 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 73 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 74 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 75 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 76 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 77 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 78 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 79 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 80 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 81 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 82 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 83 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 84 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 85 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 86 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 87 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 88 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 89 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 90 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 91 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.42.0 |
|
|
| aliases |
CVE-2015-3143
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-8j6v-xbhy-7uc2 |
|
| 14 |
| url |
VCID-a58z-fu87-9ybs |
| vulnerability_id |
VCID-a58z-fu87-9ybs |
| summary |
multiple issues |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.77.0 |
| purl |
pkg:generic/curl.se/curl@7.77.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 3 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 4 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 5 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 6 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 7 |
| vulnerability |
VCID-287k-bzqy-n7ag |
|
| 8 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 9 |
| vulnerability |
VCID-3p2z-61gq-muhs |
|
| 10 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 11 |
| vulnerability |
VCID-6ggz-pa5t-77c4 |
|
| 12 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 13 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 14 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 15 |
| vulnerability |
VCID-7z3h-9pk3-rqct |
|
| 16 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 17 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 18 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 19 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 20 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 21 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 22 |
| vulnerability |
VCID-cfry-nx5h-kudv |
|
| 23 |
| vulnerability |
VCID-cjyz-fdnv-b3g4 |
|
| 24 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 25 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 26 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 27 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 28 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 29 |
| vulnerability |
VCID-h4nw-va5b-23ef |
|
| 30 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 31 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 32 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 33 |
| vulnerability |
VCID-k5vr-1fmp-sqbw |
|
| 34 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 35 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 36 |
| vulnerability |
VCID-ns58-vmsz-5ued |
|
| 37 |
| vulnerability |
VCID-nwvb-d466-4uaa |
|
| 38 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 39 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 40 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 41 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 42 |
| vulnerability |
VCID-razg-yr7y-ukgd |
|
| 43 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 44 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 45 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 46 |
| vulnerability |
VCID-tzs5-qzhn-rqbk |
|
| 47 |
| vulnerability |
VCID-u1p8-s8vm-3yer |
|
| 48 |
| vulnerability |
VCID-urgp-rqyc-sqer |
|
| 49 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 50 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 51 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 52 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 53 |
| vulnerability |
VCID-wbwx-5vg3-uqcd |
|
| 54 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 55 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 56 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 57 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 58 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 59 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.77.0 |
|
|
| aliases |
CVE-2021-22898
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-a58z-fu87-9ybs |
|
| 15 |
| url |
VCID-a8z6-bswu-jue8 |
| vulnerability_id |
VCID-a8z6-bswu-jue8 |
| summary |
A denial of service vulnerability exists in curl <v8.1.0 in the way libcurl provides several different backends for resolving host names, selected at build time. If it is built to use the synchronous resolver, it allows name resolves to time-out slow operations using `alarm()` and `siglongjmp()`. When doing this, libcurl used a global buffer that was not mutex protected and a multi-threaded application might therefore crash or otherwise misbehave. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@8.1.0 |
| purl |
pkg:generic/curl.se/curl@8.1.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 1 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 2 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 3 |
| vulnerability |
VCID-3p2z-61gq-muhs |
|
| 4 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 5 |
| vulnerability |
VCID-6ggz-pa5t-77c4 |
|
| 6 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 7 |
| vulnerability |
VCID-85qb-zec7-subc |
|
| 8 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 9 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 10 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 11 |
| vulnerability |
VCID-ffmg-djmk-57hn |
|
| 12 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 13 |
| vulnerability |
VCID-gux4-dncg-h7a6 |
|
| 14 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 15 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 16 |
| vulnerability |
VCID-k3nv-gf9b-5ua2 |
|
| 17 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 18 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 19 |
| vulnerability |
VCID-razg-yr7y-ukgd |
|
| 20 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 21 |
| vulnerability |
VCID-u1p8-s8vm-3yer |
|
| 22 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 23 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 24 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 25 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 26 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 27 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 28 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.1.0 |
|
|
| aliases |
CVE-2023-28320
|
| risk_score |
1.6 |
| exploitability |
0.5 |
| weighted_severity |
3.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-a8z6-bswu-jue8 |
|
| 16 |
| url |
VCID-am31-t2h3-zbgw |
| vulnerability_id |
VCID-am31-t2h3-zbgw |
| summary |
multiple issues |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.78.0 |
| purl |
pkg:generic/curl.se/curl@7.78.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 1 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 2 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 3 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 4 |
| vulnerability |
VCID-287k-bzqy-n7ag |
|
| 5 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 6 |
| vulnerability |
VCID-3p2z-61gq-muhs |
|
| 7 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 8 |
| vulnerability |
VCID-6ggz-pa5t-77c4 |
|
| 9 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 10 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 11 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 12 |
| vulnerability |
VCID-7z3h-9pk3-rqct |
|
| 13 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 14 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 15 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 16 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 17 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 18 |
| vulnerability |
VCID-cfry-nx5h-kudv |
|
| 19 |
| vulnerability |
VCID-cjyz-fdnv-b3g4 |
|
| 20 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 21 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 22 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 23 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 24 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 25 |
| vulnerability |
VCID-h4nw-va5b-23ef |
|
| 26 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 27 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 28 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 29 |
| vulnerability |
VCID-k5vr-1fmp-sqbw |
|
| 30 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 31 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 32 |
| vulnerability |
VCID-ns58-vmsz-5ued |
|
| 33 |
| vulnerability |
VCID-nwvb-d466-4uaa |
|
| 34 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 35 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 36 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 37 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 38 |
| vulnerability |
VCID-razg-yr7y-ukgd |
|
| 39 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 40 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 41 |
| vulnerability |
VCID-tzs5-qzhn-rqbk |
|
| 42 |
| vulnerability |
VCID-u1p8-s8vm-3yer |
|
| 43 |
| vulnerability |
VCID-urgp-rqyc-sqer |
|
| 44 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 45 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 46 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 47 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 48 |
| vulnerability |
VCID-wbwx-5vg3-uqcd |
|
| 49 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 50 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 51 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 52 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 53 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 54 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.78.0 |
|
|
| aliases |
CVE-2021-22925
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-am31-t2h3-zbgw |
|
| 17 |
| url |
VCID-av4f-gxku-qbhp |
| vulnerability_id |
VCID-av4f-gxku-qbhp |
| summary |
multiple issues |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.51.0 |
| purl |
pkg:generic/curl.se/curl@7.51.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 7 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 8 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 9 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 10 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 11 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 12 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 13 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 14 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 15 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 16 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 17 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 18 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 19 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 20 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 21 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 22 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 23 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 24 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 25 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 26 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 27 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 28 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 29 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 30 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 31 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 32 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 33 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 34 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 35 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 36 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 37 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 38 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 39 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 40 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 41 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 42 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 43 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 44 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 45 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 46 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 47 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 48 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 49 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 50 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 51 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 52 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 53 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 54 |
| vulnerability |
VCID-raxd-4nxj-gkhp |
|
| 55 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 56 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 57 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 58 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 59 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 60 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 61 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 62 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 63 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 64 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 65 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 66 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 67 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 68 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 69 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 70 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 71 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 72 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0 |
|
|
| aliases |
CVE-2016-8624
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-av4f-gxku-qbhp |
|
| 18 |
| url |
VCID-azcz-b8f2-63be |
| vulnerability_id |
VCID-azcz-b8f2-63be |
| summary |
A vulnerability in input validation exists in curl <8.0 during communication using the TELNET protocol may allow an attacker to pass on maliciously crafted user name and "telnet options" during server negotiation. The lack of proper input scrubbing allows an attacker to send content or perform option negotiation without the application's intent. This vulnerability could be exploited if an application allows user input, thereby enabling attackers to execute arbitrary code on the system. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@8.0.0 |
| purl |
pkg:generic/curl.se/curl@8.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 1 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 2 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 3 |
| vulnerability |
VCID-3p2z-61gq-muhs |
|
| 4 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 5 |
| vulnerability |
VCID-6en5-etsd-2bce |
|
| 6 |
| vulnerability |
VCID-6ggz-pa5t-77c4 |
|
| 7 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 8 |
| vulnerability |
VCID-85qb-zec7-subc |
|
| 9 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 10 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 11 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 12 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 13 |
| vulnerability |
VCID-ffmg-djmk-57hn |
|
| 14 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 15 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 16 |
| vulnerability |
VCID-gux4-dncg-h7a6 |
|
| 17 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 18 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 19 |
| vulnerability |
VCID-k3nv-gf9b-5ua2 |
|
| 20 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 21 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 22 |
| vulnerability |
VCID-razg-yr7y-ukgd |
|
| 23 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 24 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 25 |
| vulnerability |
VCID-u1p8-s8vm-3yer |
|
| 26 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 27 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 28 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 29 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 30 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 31 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 32 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.0.0 |
|
|
| aliases |
CVE-2023-27533
|
| risk_score |
1.9 |
| exploitability |
0.5 |
| weighted_severity |
3.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-azcz-b8f2-63be |
|
| 19 |
|
| 20 |
| url |
VCID-bx2m-n5ft-3be8 |
| vulnerability_id |
VCID-bx2m-n5ft-3be8 |
| summary |
Improper Authentication
An authentication bypass vulnerability exists in libcurl <8.0.0 in the FTP connection reuse feature that can result in wrong credentials being used during subsequent transfers. Previously created connections are kept in a connection pool for reuse if they match the current setup. However, certain FTP settings such as CURLOPT_FTP_ACCOUNT, CURLOPT_FTP_ALTERNATIVE_TO_USER, CURLOPT_FTP_SSL_CCC, and CURLOPT_USE_SSL were not included in the configuration match checks, causing them to match too easily. This could lead to libcurl using the wrong credentials when performing a transfer, potentially allowing unauthorized access to sensitive information. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@8.0.0 |
| purl |
pkg:generic/curl.se/curl@8.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 1 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 2 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 3 |
| vulnerability |
VCID-3p2z-61gq-muhs |
|
| 4 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 5 |
| vulnerability |
VCID-6en5-etsd-2bce |
|
| 6 |
| vulnerability |
VCID-6ggz-pa5t-77c4 |
|
| 7 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 8 |
| vulnerability |
VCID-85qb-zec7-subc |
|
| 9 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 10 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 11 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 12 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 13 |
| vulnerability |
VCID-ffmg-djmk-57hn |
|
| 14 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 15 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 16 |
| vulnerability |
VCID-gux4-dncg-h7a6 |
|
| 17 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 18 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 19 |
| vulnerability |
VCID-k3nv-gf9b-5ua2 |
|
| 20 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 21 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 22 |
| vulnerability |
VCID-razg-yr7y-ukgd |
|
| 23 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 24 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 25 |
| vulnerability |
VCID-u1p8-s8vm-3yer |
|
| 26 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 27 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 28 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 29 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 30 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 31 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 32 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.0.0 |
|
|
| aliases |
CVE-2023-27535
|
| risk_score |
2.6 |
| exploitability |
0.5 |
| weighted_severity |
5.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bx2m-n5ft-3be8 |
|
| 21 |
| url |
VCID-cdar-9qhw-hke7 |
| vulnerability_id |
VCID-cdar-9qhw-hke7 |
| summary |
The ConnectionExists function in lib/url.c in libcurl before 7.47.0 does not properly re-use NTLM-authenticated proxy connections, which might allow remote attackers to authenticate as other users via a request, a similar issue to CVE-2014-0015. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.47.0 |
| purl |
pkg:generic/curl.se/curl@7.47.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1y6d-7vfu-ybb3 |
|
| 7 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 8 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 9 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 10 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 11 |
| vulnerability |
VCID-3s4s-6c3v-7kgn |
|
| 12 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 13 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 14 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 15 |
| vulnerability |
VCID-51ac-1jc2-vfed |
|
| 16 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 17 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 18 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 19 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 20 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 21 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 22 |
| vulnerability |
VCID-6rk4-vb5u-bkg6 |
|
| 23 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 24 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 25 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 26 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 27 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 28 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 29 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 30 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 31 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 32 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 33 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 34 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 35 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 36 |
| vulnerability |
VCID-dndt-tapy-23d2 |
|
| 37 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 38 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 39 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 40 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 41 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 42 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 43 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 44 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 45 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 46 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 47 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 48 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 49 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 50 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 51 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 52 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 53 |
| vulnerability |
VCID-mq44-5pmp-2qhh |
|
| 54 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 55 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 56 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 57 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 58 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 59 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 60 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 61 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 62 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 63 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 64 |
| vulnerability |
VCID-rfdp-gsgs-eubq |
|
| 65 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 66 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 67 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 68 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 69 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 70 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 71 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 72 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 73 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 74 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 75 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 76 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 77 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 78 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 79 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 80 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 81 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 82 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 83 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 84 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 85 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 86 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 87 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 88 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 89 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.47.0 |
|
|
| aliases |
CVE-2016-0755
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-cdar-9qhw-hke7 |
|
| 22 |
| url |
VCID-cdzf-3ydt-8bdk |
| vulnerability_id |
VCID-cdzf-3ydt-8bdk |
| summary |
When doing HTTP(S) transfers, libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even when the `CURLOPT_POSTFIELDS` option has been set, if the same handle previously was used to issue a `PUT` request which used that callback. This flaw may surprise the application and cause it to misbehave and either send off the wrong data or use memory after free or similar in the subsequent `POST` request. The problem exists in the logic for a reused handle when it is changed from a PUT to a POST. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.86.0 |
| purl |
pkg:generic/curl.se/curl@7.86.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 1 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 2 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 3 |
| vulnerability |
VCID-287k-bzqy-n7ag |
|
| 4 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 5 |
| vulnerability |
VCID-3p2z-61gq-muhs |
|
| 6 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 7 |
| vulnerability |
VCID-6en5-etsd-2bce |
|
| 8 |
| vulnerability |
VCID-6ggz-pa5t-77c4 |
|
| 9 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 10 |
| vulnerability |
VCID-85qb-zec7-subc |
|
| 11 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 12 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 13 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 14 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 15 |
| vulnerability |
VCID-cfry-nx5h-kudv |
|
| 16 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 17 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 18 |
| vulnerability |
VCID-ffmg-djmk-57hn |
|
| 19 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 20 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 21 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 22 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 23 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 24 |
| vulnerability |
VCID-k3nv-gf9b-5ua2 |
|
| 25 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 26 |
| vulnerability |
VCID-ns58-vmsz-5ued |
|
| 27 |
| vulnerability |
VCID-nwvb-d466-4uaa |
|
| 28 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 29 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 30 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 31 |
| vulnerability |
VCID-razg-yr7y-ukgd |
|
| 32 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 33 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 34 |
| vulnerability |
VCID-u1p8-s8vm-3yer |
|
| 35 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 36 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 37 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 38 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 39 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 40 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 41 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.86.0 |
|
|
| aliases |
CVE-2022-32221
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-cdzf-3ydt-8bdk |
|
| 23 |
| url |
VCID-dndt-tapy-23d2 |
| vulnerability_id |
VCID-dndt-tapy-23d2 |
| summary |
curl and libcurl before 7.50.1 do not prevent TLS session resumption when the client certificate has changed, which allows remote attackers to bypass intended restrictions by resuming a session. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.50.1 |
| purl |
pkg:generic/curl.se/curl@7.50.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1y6d-7vfu-ybb3 |
|
| 7 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 8 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 9 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 10 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 11 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 12 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 13 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 14 |
| vulnerability |
VCID-51ac-1jc2-vfed |
|
| 15 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 16 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 17 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 18 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 19 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 20 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 21 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 22 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 23 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 24 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 25 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 26 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 27 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 28 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 29 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 30 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 31 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 32 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 33 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 34 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 35 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 36 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 37 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 38 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 39 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 40 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 41 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 42 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 43 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 44 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 45 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 46 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 47 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 48 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 49 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 50 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 51 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 52 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 53 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 54 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 55 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 56 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 57 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 58 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 59 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 60 |
| vulnerability |
VCID-raxd-4nxj-gkhp |
|
| 61 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 62 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 63 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 64 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 65 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 66 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 67 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 68 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 69 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 70 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 71 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 72 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 73 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 74 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 75 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 76 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 77 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 78 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 79 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 80 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 81 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 82 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 83 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 84 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 85 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.50.1 |
|
|
| aliases |
CVE-2016-5419
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dndt-tapy-23d2 |
|
| 24 |
| url |
VCID-e4qf-7gqs-qyg3 |
| vulnerability_id |
VCID-e4qf-7gqs-qyg3 |
| summary |
cURL and libcurl 7.10.6 through 7.34.0, when more than one authentication method is enabled, re-uses NTLM connections, which might allow context-dependent attackers to authenticate as other users via a request. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.35.0 |
| purl |
pkg:generic/curl.se/curl@7.35.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1y6d-7vfu-ybb3 |
|
| 7 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 8 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 9 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 10 |
| vulnerability |
VCID-2u6v-6vm9-z3by |
|
| 11 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 12 |
| vulnerability |
VCID-3s4s-6c3v-7kgn |
|
| 13 |
| vulnerability |
VCID-3xcn-bur1-tkdt |
|
| 14 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 15 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 16 |
| vulnerability |
VCID-51ac-1jc2-vfed |
|
| 17 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 18 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 19 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 20 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 21 |
| vulnerability |
VCID-6fv7-7u2t-gfgb |
|
| 22 |
| vulnerability |
VCID-6rk4-vb5u-bkg6 |
|
| 23 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 24 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 25 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 26 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 27 |
| vulnerability |
VCID-8j6v-xbhy-7uc2 |
|
| 28 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 29 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 30 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 31 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 32 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 33 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 34 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 35 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 36 |
| vulnerability |
VCID-cdar-9qhw-hke7 |
|
| 37 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 38 |
| vulnerability |
VCID-cxy6-vzz9-w3ff |
|
| 39 |
| vulnerability |
VCID-dndt-tapy-23d2 |
|
| 40 |
| vulnerability |
VCID-f276-amhj-9yfx |
|
| 41 |
| vulnerability |
VCID-f922-jx9w-mbc5 |
|
| 42 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 43 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 44 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 45 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 46 |
| vulnerability |
VCID-gnur-763x-qkcu |
|
| 47 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 48 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 49 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 50 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 51 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 52 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 53 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 54 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 55 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 56 |
| vulnerability |
VCID-mq44-5pmp-2qhh |
|
| 57 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 58 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 59 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 60 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 61 |
| vulnerability |
VCID-p9v4-nweu-vydg |
|
| 62 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 63 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 64 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 65 |
| vulnerability |
VCID-q9ht-ra39-kuef |
|
| 66 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 67 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 68 |
| vulnerability |
VCID-rfdp-gsgs-eubq |
|
| 69 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 70 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 71 |
| vulnerability |
VCID-s6gu-gm97-fyfk |
|
| 72 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 73 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 74 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 75 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 76 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 77 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 78 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 79 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 80 |
| vulnerability |
VCID-tyqp-e8cp-dbbm |
|
| 81 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 82 |
| vulnerability |
VCID-uh5a-zcds-3bcc |
|
| 83 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 84 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 85 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 86 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 87 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 88 |
| vulnerability |
VCID-xsnb-eujr-y7bz |
|
| 89 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 90 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 91 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 92 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 93 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 94 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 95 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.35.0 |
|
|
| aliases |
CVE-2014-0015
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-e4qf-7gqs-qyg3 |
|
| 25 |
| url |
VCID-f276-amhj-9yfx |
| vulnerability_id |
VCID-f276-amhj-9yfx |
| summary |
The default configuration for cURL and libcurl before 7.42.1 sends custom HTTP headers to both the proxy and destination server, which might allow remote proxy servers to obtain sensitive information by reading the header contents. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.42.1 |
| purl |
pkg:generic/curl.se/curl@7.42.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1y6d-7vfu-ybb3 |
|
| 7 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 8 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 9 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 10 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 11 |
| vulnerability |
VCID-3s4s-6c3v-7kgn |
|
| 12 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 13 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 14 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 15 |
| vulnerability |
VCID-51ac-1jc2-vfed |
|
| 16 |
| vulnerability |
VCID-5m1h-d3cm-dqfu |
|
| 17 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 18 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 19 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 20 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 21 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 22 |
| vulnerability |
VCID-6fv7-7u2t-gfgb |
|
| 23 |
| vulnerability |
VCID-6rk4-vb5u-bkg6 |
|
| 24 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 25 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 26 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 27 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 28 |
| vulnerability |
VCID-9rvz-5w86-u7e5 |
|
| 29 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 30 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 31 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 32 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 33 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 34 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 35 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 36 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 37 |
| vulnerability |
VCID-cdar-9qhw-hke7 |
|
| 38 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 39 |
| vulnerability |
VCID-dndt-tapy-23d2 |
|
| 40 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 41 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 42 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 43 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 44 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 45 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 46 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 47 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 48 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 49 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 50 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 51 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 52 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 53 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 54 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 55 |
| vulnerability |
VCID-mq44-5pmp-2qhh |
|
| 56 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 57 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 58 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 59 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 60 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 61 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 62 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 63 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 64 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 65 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 66 |
| vulnerability |
VCID-rfdp-gsgs-eubq |
|
| 67 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 68 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 69 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 70 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 71 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 72 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 73 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 74 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 75 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 76 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 77 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 78 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 79 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 80 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 81 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 82 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 83 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 84 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 85 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 86 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 87 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 88 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 89 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 90 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.42.1 |
|
|
| aliases |
CVE-2015-3153
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-f276-amhj-9yfx |
|
| 26 |
| url |
VCID-f922-jx9w-mbc5 |
| vulnerability_id |
VCID-f922-jx9w-mbc5 |
| summary |
CRLF injection vulnerability in libcurl 6.0 through 7.x before 7.40.0, when using an HTTP proxy, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in a URL. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.40.0 |
| purl |
pkg:generic/curl.se/curl@7.40.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1y6d-7vfu-ybb3 |
|
| 7 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 8 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 9 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 10 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 11 |
| vulnerability |
VCID-3s4s-6c3v-7kgn |
|
| 12 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 13 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 14 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 15 |
| vulnerability |
VCID-51ac-1jc2-vfed |
|
| 16 |
| vulnerability |
VCID-5m1h-d3cm-dqfu |
|
| 17 |
| vulnerability |
VCID-5sem-gndf-97e6 |
|
| 18 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 19 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 20 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 21 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 22 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 23 |
| vulnerability |
VCID-6fv7-7u2t-gfgb |
|
| 24 |
| vulnerability |
VCID-6rk4-vb5u-bkg6 |
|
| 25 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 26 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 27 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 28 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 29 |
| vulnerability |
VCID-8j6v-xbhy-7uc2 |
|
| 30 |
| vulnerability |
VCID-9rvz-5w86-u7e5 |
|
| 31 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 32 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 33 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 34 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 35 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 36 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 37 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 38 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 39 |
| vulnerability |
VCID-cdar-9qhw-hke7 |
|
| 40 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 41 |
| vulnerability |
VCID-dndt-tapy-23d2 |
|
| 42 |
| vulnerability |
VCID-f276-amhj-9yfx |
|
| 43 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 44 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 45 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 46 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 47 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 48 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 49 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 50 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 51 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 52 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 53 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 54 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 55 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 56 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 57 |
| vulnerability |
VCID-mq44-5pmp-2qhh |
|
| 58 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 59 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 60 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 61 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 62 |
| vulnerability |
VCID-p9v4-nweu-vydg |
|
| 63 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 64 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 65 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 66 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 67 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 68 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 69 |
| vulnerability |
VCID-rfdp-gsgs-eubq |
|
| 70 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 71 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 72 |
| vulnerability |
VCID-s6gu-gm97-fyfk |
|
| 73 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 74 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 75 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 76 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 77 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 78 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 79 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 80 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 81 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 82 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 83 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 84 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 85 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 86 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 87 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 88 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 89 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 90 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 91 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 92 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 93 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.40.0 |
|
|
| aliases |
CVE-2014-8150
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-f922-jx9w-mbc5 |
|
| 27 |
|
| 28 |
| url |
VCID-fhc8-r8gv-bugj |
| vulnerability_id |
VCID-fhc8-r8gv-bugj |
| summary |
multiple issues |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.76.0 |
| purl |
pkg:generic/curl.se/curl@7.76.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 3 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 4 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 5 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 6 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 7 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 8 |
| vulnerability |
VCID-3p2z-61gq-muhs |
|
| 9 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 10 |
| vulnerability |
VCID-6ggz-pa5t-77c4 |
|
| 11 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 12 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 13 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 14 |
| vulnerability |
VCID-7z3h-9pk3-rqct |
|
| 15 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 16 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 17 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 18 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 19 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 20 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 21 |
| vulnerability |
VCID-byzw-xw9s-pkga |
|
| 22 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 23 |
| vulnerability |
VCID-cfry-nx5h-kudv |
|
| 24 |
| vulnerability |
VCID-cjyz-fdnv-b3g4 |
|
| 25 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 26 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 27 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 28 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 29 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 30 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 31 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 32 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 33 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 34 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 35 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 36 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 37 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 38 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 39 |
| vulnerability |
VCID-razg-yr7y-ukgd |
|
| 40 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 41 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 42 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 43 |
| vulnerability |
VCID-tzs5-qzhn-rqbk |
|
| 44 |
| vulnerability |
VCID-u1p8-s8vm-3yer |
|
| 45 |
| vulnerability |
VCID-urgp-rqyc-sqer |
|
| 46 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 47 |
| vulnerability |
VCID-vgap-k5zw-9qbn |
|
| 48 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 49 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 50 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 51 |
| vulnerability |
VCID-wbwx-5vg3-uqcd |
|
| 52 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 53 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 54 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 55 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 56 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 57 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.76.0 |
|
|
| aliases |
CVE-2021-22876
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fhc8-r8gv-bugj |
|
| 29 |
| url |
VCID-g4n9-kg3s-pfcr |
| vulnerability_id |
VCID-g4n9-kg3s-pfcr |
| summary |
An improper certificate validation vulnerability exists in curl <v8.1.0 in the way it supports matching of wildcard patterns when listed as "Subject Alternative Name" in TLS server certificates. curl can be built to use its own name matching function for TLS rather than one provided by a TLS library. This private wildcard matching function would match IDN (International Domain Name) hosts incorrectly and could as a result accept patterns that otherwise should mismatch. IDN hostnames are converted to puny code before used for certificate checks. Puny coded names always start with `xn--` and should not be allowed to pattern match, but the wildcard check in curl could still check for `x*`, which would match even though the IDN name most likely contained nothing even resembling an `x`. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@8.1.0 |
| purl |
pkg:generic/curl.se/curl@8.1.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 1 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 2 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 3 |
| vulnerability |
VCID-3p2z-61gq-muhs |
|
| 4 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 5 |
| vulnerability |
VCID-6ggz-pa5t-77c4 |
|
| 6 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 7 |
| vulnerability |
VCID-85qb-zec7-subc |
|
| 8 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 9 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 10 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 11 |
| vulnerability |
VCID-ffmg-djmk-57hn |
|
| 12 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 13 |
| vulnerability |
VCID-gux4-dncg-h7a6 |
|
| 14 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 15 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 16 |
| vulnerability |
VCID-k3nv-gf9b-5ua2 |
|
| 17 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 18 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 19 |
| vulnerability |
VCID-razg-yr7y-ukgd |
|
| 20 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 21 |
| vulnerability |
VCID-u1p8-s8vm-3yer |
|
| 22 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 23 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 24 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 25 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 26 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 27 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 28 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.1.0 |
|
|
| aliases |
CVE-2023-28321
|
| risk_score |
2.6 |
| exploitability |
0.5 |
| weighted_severity |
5.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-g4n9-kg3s-pfcr |
|
| 30 |
| url |
VCID-g72q-eedp-aufb |
| vulnerability_id |
VCID-g72q-eedp-aufb |
| summary |
The tailMatch function in cookie.c in cURL and libcurl before 7.30.0 does not properly match the path domain when sending cookies, which allows remote attackers to steal cookies via a matching suffix in the domain of a URL. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.30.0 |
| purl |
pkg:generic/curl.se/curl@7.30.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 7 |
| vulnerability |
VCID-2u6v-6vm9-z3by |
|
| 8 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 9 |
| vulnerability |
VCID-3s4s-6c3v-7kgn |
|
| 10 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 11 |
| vulnerability |
VCID-51ac-1jc2-vfed |
|
| 12 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 13 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 14 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 15 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 16 |
| vulnerability |
VCID-6fv7-7u2t-gfgb |
|
| 17 |
| vulnerability |
VCID-6rk4-vb5u-bkg6 |
|
| 18 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 19 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 20 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 21 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 22 |
| vulnerability |
VCID-8j6v-xbhy-7uc2 |
|
| 23 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 24 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 25 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 26 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 27 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 28 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 29 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 30 |
| vulnerability |
VCID-cdar-9qhw-hke7 |
|
| 31 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 32 |
| vulnerability |
VCID-cmcn-f8ws-q3h2 |
|
| 33 |
| vulnerability |
VCID-cxy6-vzz9-w3ff |
|
| 34 |
| vulnerability |
VCID-dndt-tapy-23d2 |
|
| 35 |
| vulnerability |
VCID-e4qf-7gqs-qyg3 |
|
| 36 |
| vulnerability |
VCID-f276-amhj-9yfx |
|
| 37 |
| vulnerability |
VCID-f922-jx9w-mbc5 |
|
| 38 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 39 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 40 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 41 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 42 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 43 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 44 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 45 |
| vulnerability |
VCID-hhu3-dp3m-gbgm |
|
| 46 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 47 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 48 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 49 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 50 |
| vulnerability |
VCID-nkmd-xb13-mbg9 |
|
| 51 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 52 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 53 |
| vulnerability |
VCID-p9v4-nweu-vydg |
|
| 54 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 55 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 56 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 57 |
| vulnerability |
VCID-q9ht-ra39-kuef |
|
| 58 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 59 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 60 |
| vulnerability |
VCID-rfdp-gsgs-eubq |
|
| 61 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 62 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 63 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 64 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 65 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 66 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 67 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 68 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 69 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 70 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 71 |
| vulnerability |
VCID-tyqp-e8cp-dbbm |
|
| 72 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 73 |
| vulnerability |
VCID-uh5a-zcds-3bcc |
|
| 74 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 75 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 76 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 77 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 78 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 79 |
| vulnerability |
VCID-xsnb-eujr-y7bz |
|
| 80 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 81 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 82 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 83 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 84 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 85 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.30.0 |
|
|
| aliases |
CVE-2013-1944
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-g72q-eedp-aufb |
|
| 31 |
|
| 32 |
| url |
VCID-gueb-wzpx-ufb2 |
| vulnerability_id |
VCID-gueb-wzpx-ufb2 |
| summary |
Improper Authentication
An authentication bypass vulnerability exists in libcurl v8.0.0 where it reuses a previously established SSH connection despite the fact that an SSH option was modified, which should have prevented reuse. libcurl maintains a pool of previously used connections to reuse them for subsequent transfers if the configurations match. However, two SSH settings were omitted from the configuration check, allowing them to match easily, potentially leading to the reuse of an inappropriate connection. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@8.0.0 |
| purl |
pkg:generic/curl.se/curl@8.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 1 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 2 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 3 |
| vulnerability |
VCID-3p2z-61gq-muhs |
|
| 4 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 5 |
| vulnerability |
VCID-6en5-etsd-2bce |
|
| 6 |
| vulnerability |
VCID-6ggz-pa5t-77c4 |
|
| 7 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 8 |
| vulnerability |
VCID-85qb-zec7-subc |
|
| 9 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 10 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 11 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 12 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 13 |
| vulnerability |
VCID-ffmg-djmk-57hn |
|
| 14 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 15 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 16 |
| vulnerability |
VCID-gux4-dncg-h7a6 |
|
| 17 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 18 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 19 |
| vulnerability |
VCID-k3nv-gf9b-5ua2 |
|
| 20 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 21 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 22 |
| vulnerability |
VCID-razg-yr7y-ukgd |
|
| 23 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 24 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 25 |
| vulnerability |
VCID-u1p8-s8vm-3yer |
|
| 26 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 27 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 28 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 29 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 30 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 31 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 32 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.0.0 |
|
|
| aliases |
CVE-2023-27538
|
| risk_score |
2.5 |
| exploitability |
0.5 |
| weighted_severity |
5.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-gueb-wzpx-ufb2 |
|
| 33 |
| url |
VCID-hhu3-dp3m-gbgm |
| vulnerability_id |
VCID-hhu3-dp3m-gbgm |
| summary |
Heap-based buffer overflow in the curl_easy_unescape function in lib/escape.c in cURL and libcurl 7.7 through 7.30.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted string ending in a "%" (percent) character. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.31.0 |
| purl |
pkg:generic/curl.se/curl@7.31.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 7 |
| vulnerability |
VCID-2u6v-6vm9-z3by |
|
| 8 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 9 |
| vulnerability |
VCID-3s4s-6c3v-7kgn |
|
| 10 |
| vulnerability |
VCID-3xcn-bur1-tkdt |
|
| 11 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 12 |
| vulnerability |
VCID-51ac-1jc2-vfed |
|
| 13 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 14 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 15 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 16 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 17 |
| vulnerability |
VCID-6fv7-7u2t-gfgb |
|
| 18 |
| vulnerability |
VCID-6rk4-vb5u-bkg6 |
|
| 19 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 20 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 21 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 22 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 23 |
| vulnerability |
VCID-8j6v-xbhy-7uc2 |
|
| 24 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 25 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 26 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 27 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 28 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 29 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 30 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 31 |
| vulnerability |
VCID-cdar-9qhw-hke7 |
|
| 32 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 33 |
| vulnerability |
VCID-cmcn-f8ws-q3h2 |
|
| 34 |
| vulnerability |
VCID-cxy6-vzz9-w3ff |
|
| 35 |
| vulnerability |
VCID-dndt-tapy-23d2 |
|
| 36 |
| vulnerability |
VCID-e4qf-7gqs-qyg3 |
|
| 37 |
| vulnerability |
VCID-f276-amhj-9yfx |
|
| 38 |
| vulnerability |
VCID-f922-jx9w-mbc5 |
|
| 39 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 40 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 41 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 42 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 43 |
| vulnerability |
VCID-gnur-763x-qkcu |
|
| 44 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 45 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 46 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 47 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 48 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 49 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 50 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 51 |
| vulnerability |
VCID-nkmd-xb13-mbg9 |
|
| 52 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 53 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 54 |
| vulnerability |
VCID-p9v4-nweu-vydg |
|
| 55 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 56 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 57 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 58 |
| vulnerability |
VCID-q9ht-ra39-kuef |
|
| 59 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 60 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 61 |
| vulnerability |
VCID-rfdp-gsgs-eubq |
|
| 62 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 63 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 64 |
| vulnerability |
VCID-s6gu-gm97-fyfk |
|
| 65 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 66 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 67 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 68 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 69 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 70 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 71 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 72 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 73 |
| vulnerability |
VCID-tyqp-e8cp-dbbm |
|
| 74 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 75 |
| vulnerability |
VCID-uh5a-zcds-3bcc |
|
| 76 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 77 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 78 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 79 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 80 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 81 |
| vulnerability |
VCID-xsnb-eujr-y7bz |
|
| 82 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 83 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 84 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 85 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 86 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 87 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.31.0 |
|
|
| aliases |
CVE-2013-2174
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hhu3-dp3m-gbgm |
|
| 34 |
| url |
VCID-kkrm-dj79-4ucj |
| vulnerability_id |
VCID-kkrm-dj79-4ucj |
| summary |
multiple issues |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.83.0 |
| purl |
pkg:generic/curl.se/curl@7.83.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 1 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 2 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 3 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 4 |
| vulnerability |
VCID-287k-bzqy-n7ag |
|
| 5 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 6 |
| vulnerability |
VCID-3p2z-61gq-muhs |
|
| 7 |
| vulnerability |
VCID-5m9y-9y57-kqg6 |
|
| 8 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 9 |
| vulnerability |
VCID-6en5-etsd-2bce |
|
| 10 |
| vulnerability |
VCID-6ggz-pa5t-77c4 |
|
| 11 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 12 |
| vulnerability |
VCID-7z3h-9pk3-rqct |
|
| 13 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 14 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 15 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 16 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 17 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 18 |
| vulnerability |
VCID-cfry-nx5h-kudv |
|
| 19 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 20 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 21 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 22 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 23 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 24 |
| vulnerability |
VCID-h4nw-va5b-23ef |
|
| 25 |
| vulnerability |
VCID-hb4z-s871-d7ck |
|
| 26 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 27 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 28 |
| vulnerability |
VCID-k5vr-1fmp-sqbw |
|
| 29 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 30 |
| vulnerability |
VCID-mqzd-mcw5-s3h6 |
|
| 31 |
| vulnerability |
VCID-mray-vkqx-5ka7 |
|
| 32 |
| vulnerability |
VCID-ns58-vmsz-5ued |
|
| 33 |
| vulnerability |
VCID-nwvb-d466-4uaa |
|
| 34 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 35 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 36 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 37 |
| vulnerability |
VCID-razg-yr7y-ukgd |
|
| 38 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 39 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 40 |
| vulnerability |
VCID-tzs5-qzhn-rqbk |
|
| 41 |
| vulnerability |
VCID-u1p8-s8vm-3yer |
|
| 42 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 43 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 44 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 45 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 46 |
| vulnerability |
VCID-wbwx-5vg3-uqcd |
|
| 47 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 48 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 49 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 50 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 51 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 52 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.83.0 |
|
|
| aliases |
CVE-2022-27776
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-kkrm-dj79-4ucj |
|
| 35 |
| url |
VCID-msd2-35g9-nyd2 |
| vulnerability_id |
VCID-msd2-35g9-nyd2 |
| summary |
A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed, for example doing port scanning and service banner extractions. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.74.0 |
| purl |
pkg:generic/curl.se/curl@7.74.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 3 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 4 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 5 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 6 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 7 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 8 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 9 |
| vulnerability |
VCID-6ggz-pa5t-77c4 |
|
| 10 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 11 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 12 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 13 |
| vulnerability |
VCID-7z3h-9pk3-rqct |
|
| 14 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 15 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 16 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 17 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 18 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 19 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 20 |
| vulnerability |
VCID-byzw-xw9s-pkga |
|
| 21 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 22 |
| vulnerability |
VCID-cfry-nx5h-kudv |
|
| 23 |
| vulnerability |
VCID-cjyz-fdnv-b3g4 |
|
| 24 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 25 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 26 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 27 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 28 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 29 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 30 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 31 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 32 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 33 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 34 |
| vulnerability |
VCID-kn6z-caj8-bbc9 |
|
| 35 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 36 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 37 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 38 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 39 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 40 |
| vulnerability |
VCID-razg-yr7y-ukgd |
|
| 41 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 42 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 43 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 44 |
| vulnerability |
VCID-tzs5-qzhn-rqbk |
|
| 45 |
| vulnerability |
VCID-urgp-rqyc-sqer |
|
| 46 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 47 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 48 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 49 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 50 |
| vulnerability |
VCID-wbwx-5vg3-uqcd |
|
| 51 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 52 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 53 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 54 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 55 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 56 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.74.0 |
|
|
| aliases |
CVE-2020-8284
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-msd2-35g9-nyd2 |
|
| 36 |
| url |
VCID-naac-snjw-qbad |
| vulnerability_id |
VCID-naac-snjw-qbad |
| summary |
libcurl may read outside of a heap allocated buffer when doing FTP. When libcurl connects to an FTP server and successfully logs in (anonymous or not), it asks the server for the current directory with the `PWD` command. The server then responds with a 257 response containing the path, inside double quotes. The returned path name is then kept by libcurl for subsequent uses. Due to a flaw in the string parser for this directory name, a directory name passed like this but without a closing double quote would lead to libcurl not adding a trailing NUL byte to the buffer holding the name. When libcurl would then later access the string, it could read beyond the allocated heap buffer and crash or wrongly access data beyond the buffer, thinking it was part of the path. A malicious server could abuse this fact and effectively prevent libcurl-based clients to work with it - the PWD command is always issued on new FTP connections and the mistake has a high chance of causing a segfault. The simple fact that this has issue remained undiscovered for this long could suggest that malformed PWD responses are rare in benign servers. We are not aware of any exploit of this flaw. This bug was introduced in commit [415d2e7cb7](https://github.com/curl/curl/commit/415d2e7cb7), March 2005. In libcurl version 7.56.0, the parser always zero terminates the string but also rejects it if not terminated properly with a final double quote. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.56.0 |
| purl |
pkg:generic/curl.se/curl@7.56.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 3 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 4 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 5 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 6 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 7 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 8 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 9 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 10 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 11 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 12 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 13 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 14 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 15 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 16 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 17 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 18 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 19 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 20 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 21 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 22 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 23 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 24 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 25 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 26 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 27 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 28 |
| vulnerability |
VCID-dj48-3dkt-dbdh |
|
| 29 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 30 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 31 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 32 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 33 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 34 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 35 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 36 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 37 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 38 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 39 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 40 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 41 |
| vulnerability |
VCID-kae8-wmf2-2kf1 |
|
| 42 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 43 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 44 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 45 |
| vulnerability |
VCID-p7mn-a632-c3ag |
|
| 46 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 47 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 48 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 49 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 50 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 51 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 52 |
| vulnerability |
VCID-raxd-4nxj-gkhp |
|
| 53 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 54 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 55 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 56 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 57 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 58 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 59 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 60 |
| vulnerability |
VCID-uj78-2cgz-zbdb |
|
| 61 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 62 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 63 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 64 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 65 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 66 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 67 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 68 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 69 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.56.0 |
|
|
| aliases |
CVE-2017-1000254
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-naac-snjw-qbad |
|
| 37 |
| url |
VCID-nkmd-xb13-mbg9 |
| vulnerability_id |
VCID-nkmd-xb13-mbg9 |
| summary |
cURL and libcurl 7.18.0 through 7.32.0, when built with OpenSSL, disables the certificate CN and SAN name field verification (CURLOPT_SSL_VERIFYHOST) when the digital signature verification (CURLOPT_SSL_VERIFYPEER) is disabled, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.33.0 |
| purl |
pkg:generic/curl.se/curl@7.33.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 7 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 8 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 9 |
| vulnerability |
VCID-2u6v-6vm9-z3by |
|
| 10 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 11 |
| vulnerability |
VCID-3s4s-6c3v-7kgn |
|
| 12 |
| vulnerability |
VCID-3xcn-bur1-tkdt |
|
| 13 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 14 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 15 |
| vulnerability |
VCID-51ac-1jc2-vfed |
|
| 16 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 17 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 18 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 19 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 20 |
| vulnerability |
VCID-6fv7-7u2t-gfgb |
|
| 21 |
| vulnerability |
VCID-6rk4-vb5u-bkg6 |
|
| 22 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 23 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 24 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 25 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 26 |
| vulnerability |
VCID-8j6v-xbhy-7uc2 |
|
| 27 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 28 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 29 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 30 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 31 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 32 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 33 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 34 |
| vulnerability |
VCID-cdar-9qhw-hke7 |
|
| 35 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 36 |
| vulnerability |
VCID-cmcn-f8ws-q3h2 |
|
| 37 |
| vulnerability |
VCID-cxy6-vzz9-w3ff |
|
| 38 |
| vulnerability |
VCID-dndt-tapy-23d2 |
|
| 39 |
| vulnerability |
VCID-e4qf-7gqs-qyg3 |
|
| 40 |
| vulnerability |
VCID-f276-amhj-9yfx |
|
| 41 |
| vulnerability |
VCID-f922-jx9w-mbc5 |
|
| 42 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 43 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 44 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 45 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 46 |
| vulnerability |
VCID-gnur-763x-qkcu |
|
| 47 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 48 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 49 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 50 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 51 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 52 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 53 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 54 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 55 |
| vulnerability |
VCID-mq44-5pmp-2qhh |
|
| 56 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 57 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 58 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 59 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 60 |
| vulnerability |
VCID-p9v4-nweu-vydg |
|
| 61 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 62 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 63 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 64 |
| vulnerability |
VCID-q9ht-ra39-kuef |
|
| 65 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 66 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 67 |
| vulnerability |
VCID-rfdp-gsgs-eubq |
|
| 68 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 69 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 70 |
| vulnerability |
VCID-s6gu-gm97-fyfk |
|
| 71 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 72 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 73 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 74 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 75 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 76 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 77 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 78 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 79 |
| vulnerability |
VCID-tyqp-e8cp-dbbm |
|
| 80 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 81 |
| vulnerability |
VCID-uh5a-zcds-3bcc |
|
| 82 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 83 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 84 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 85 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 86 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 87 |
| vulnerability |
VCID-xsnb-eujr-y7bz |
|
| 88 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 89 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 90 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 91 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 92 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 93 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.33.0 |
|
|
| aliases |
CVE-2013-4545
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-nkmd-xb13-mbg9 |
|
| 38 |
| url |
VCID-p97a-kjpp-f3d8 |
| vulnerability_id |
VCID-p97a-kjpp-f3d8 |
| summary |
A path traversal vulnerability exists in curl <8.0.0 SFTP implementation causes the tilde (~) character to be wrongly replaced when used as a prefix in the first path element, in addition to its intended use as the first element to indicate a path relative to the user's home directory. Attackers can exploit this flaw to bypass filtering or execute arbitrary code by crafting a path like /~2/foo while accessing a server with a specific user. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@8.0.0 |
| purl |
pkg:generic/curl.se/curl@8.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 1 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 2 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 3 |
| vulnerability |
VCID-3p2z-61gq-muhs |
|
| 4 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 5 |
| vulnerability |
VCID-6en5-etsd-2bce |
|
| 6 |
| vulnerability |
VCID-6ggz-pa5t-77c4 |
|
| 7 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 8 |
| vulnerability |
VCID-85qb-zec7-subc |
|
| 9 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 10 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 11 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 12 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 13 |
| vulnerability |
VCID-ffmg-djmk-57hn |
|
| 14 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 15 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 16 |
| vulnerability |
VCID-gux4-dncg-h7a6 |
|
| 17 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 18 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 19 |
| vulnerability |
VCID-k3nv-gf9b-5ua2 |
|
| 20 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 21 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 22 |
| vulnerability |
VCID-razg-yr7y-ukgd |
|
| 23 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 24 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 25 |
| vulnerability |
VCID-u1p8-s8vm-3yer |
|
| 26 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 27 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 28 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 29 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 30 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 31 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 32 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.0.0 |
|
|
| aliases |
CVE-2023-27534
|
| risk_score |
1.6 |
| exploitability |
0.5 |
| weighted_severity |
3.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-p97a-kjpp-f3d8 |
|
| 39 |
| url |
VCID-p9v4-nweu-vydg |
| vulnerability_id |
VCID-p9v4-nweu-vydg |
| summary |
cURL and libcurl 7.10.6 through 7.41.0 do not properly re-use authenticated Negotiate connections, which allows remote attackers to connect as other users via a request. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.42.0 |
| purl |
pkg:generic/curl.se/curl@7.42.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1y6d-7vfu-ybb3 |
|
| 7 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 8 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 9 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 10 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 11 |
| vulnerability |
VCID-3s4s-6c3v-7kgn |
|
| 12 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 13 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 14 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 15 |
| vulnerability |
VCID-51ac-1jc2-vfed |
|
| 16 |
| vulnerability |
VCID-5m1h-d3cm-dqfu |
|
| 17 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 18 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 19 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 20 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 21 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 22 |
| vulnerability |
VCID-6fv7-7u2t-gfgb |
|
| 23 |
| vulnerability |
VCID-6rk4-vb5u-bkg6 |
|
| 24 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 25 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 26 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 27 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 28 |
| vulnerability |
VCID-9rvz-5w86-u7e5 |
|
| 29 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 30 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 31 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 32 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 33 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 34 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 35 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 36 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 37 |
| vulnerability |
VCID-cdar-9qhw-hke7 |
|
| 38 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 39 |
| vulnerability |
VCID-dndt-tapy-23d2 |
|
| 40 |
| vulnerability |
VCID-f276-amhj-9yfx |
|
| 41 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 42 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 43 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 44 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 45 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 46 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 47 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 48 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 49 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 50 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 51 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 52 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 53 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 54 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 55 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 56 |
| vulnerability |
VCID-mq44-5pmp-2qhh |
|
| 57 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 58 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 59 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 60 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 61 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 62 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 63 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 64 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 65 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 66 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 67 |
| vulnerability |
VCID-rfdp-gsgs-eubq |
|
| 68 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 69 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 70 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 71 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 72 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 73 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 74 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 75 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 76 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 77 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 78 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 79 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 80 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 81 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 82 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 83 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 84 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 85 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 86 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 87 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 88 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 89 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 90 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 91 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.42.0 |
|
|
| aliases |
CVE-2015-3148
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-p9v4-nweu-vydg |
|
| 40 |
| url |
VCID-q2kb-mjg4-uba1 |
| vulnerability_id |
VCID-q2kb-mjg4-uba1 |
| summary |
lib/ssluse.c in cURL and libcurl 7.4 through 7.19.5, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.19.6 |
| purl |
pkg:generic/curl.se/curl@7.19.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 1 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 2 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 3 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 4 |
| vulnerability |
VCID-2u6v-6vm9-z3by |
|
| 5 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 6 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 7 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 8 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 9 |
| vulnerability |
VCID-64mt-9155-tkbv |
|
| 10 |
| vulnerability |
VCID-6fv7-7u2t-gfgb |
|
| 11 |
| vulnerability |
VCID-6rk4-vb5u-bkg6 |
|
| 12 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 13 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 14 |
| vulnerability |
VCID-8j6v-xbhy-7uc2 |
|
| 15 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 16 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 17 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 18 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 19 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 20 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 21 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 22 |
| vulnerability |
VCID-cdar-9qhw-hke7 |
|
| 23 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 24 |
| vulnerability |
VCID-dndt-tapy-23d2 |
|
| 25 |
| vulnerability |
VCID-e4qf-7gqs-qyg3 |
|
| 26 |
| vulnerability |
VCID-f276-amhj-9yfx |
|
| 27 |
| vulnerability |
VCID-f922-jx9w-mbc5 |
|
| 28 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 29 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 30 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 31 |
| vulnerability |
VCID-g72q-eedp-aufb |
|
| 32 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 33 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 34 |
| vulnerability |
VCID-hhu3-dp3m-gbgm |
|
| 35 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 36 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 37 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 38 |
| vulnerability |
VCID-nkmd-xb13-mbg9 |
|
| 39 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 40 |
| vulnerability |
VCID-p9v4-nweu-vydg |
|
| 41 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 42 |
| vulnerability |
VCID-q9ht-ra39-kuef |
|
| 43 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 44 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 45 |
| vulnerability |
VCID-rfdp-gsgs-eubq |
|
| 46 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 47 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 48 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 49 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 50 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 51 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 52 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 53 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 54 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 55 |
| vulnerability |
VCID-tyqp-e8cp-dbbm |
|
| 56 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 57 |
| vulnerability |
VCID-uh5a-zcds-3bcc |
|
| 58 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 59 |
| vulnerability |
VCID-vnqb-6t3e-rudt |
|
| 60 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 61 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 62 |
| vulnerability |
VCID-wc29-pw8g-mkgj |
|
| 63 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 64 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 65 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 66 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 67 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 68 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.19.6 |
|
|
| aliases |
CVE-2009-2417
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-q2kb-mjg4-uba1 |
|
| 41 |
| url |
VCID-q8ja-keyk-fyfb |
| vulnerability_id |
VCID-q8ja-keyk-fyfb |
| summary |
multiple issues |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.51.0 |
| purl |
pkg:generic/curl.se/curl@7.51.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 7 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 8 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 9 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 10 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 11 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 12 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 13 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 14 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 15 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 16 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 17 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 18 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 19 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 20 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 21 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 22 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 23 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 24 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 25 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 26 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 27 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 28 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 29 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 30 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 31 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 32 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 33 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 34 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 35 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 36 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 37 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 38 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 39 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 40 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 41 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 42 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 43 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 44 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 45 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 46 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 47 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 48 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 49 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 50 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 51 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 52 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 53 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 54 |
| vulnerability |
VCID-raxd-4nxj-gkhp |
|
| 55 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 56 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 57 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 58 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 59 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 60 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 61 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 62 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 63 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 64 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 65 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 66 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 67 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 68 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 69 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 70 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 71 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 72 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0 |
|
|
| aliases |
CVE-2016-8625
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-q8ja-keyk-fyfb |
|
| 42 |
| url |
VCID-q9ht-ra39-kuef |
| vulnerability_id |
VCID-q9ht-ra39-kuef |
| summary |
The default configuration in cURL and libcurl 7.10.6 before 7.36.0 re-uses (1) SCP, (2) SFTP, (3) POP3, (4) POP3S, (5) IMAP, (6) IMAPS, (7) SMTP, (8) SMTPS, (9) LDAP, and (10) LDAPS connections, which might allow context-dependent attackers to connect as other users via a request, a similar issue to CVE-2014-0015. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.36.0 |
| purl |
pkg:generic/curl.se/curl@7.36.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1y6d-7vfu-ybb3 |
|
| 7 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 8 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 9 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 10 |
| vulnerability |
VCID-2u6v-6vm9-z3by |
|
| 11 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 12 |
| vulnerability |
VCID-3s4s-6c3v-7kgn |
|
| 13 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 14 |
| vulnerability |
VCID-3xcn-bur1-tkdt |
|
| 15 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 16 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 17 |
| vulnerability |
VCID-51ac-1jc2-vfed |
|
| 18 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 19 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 20 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 21 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 22 |
| vulnerability |
VCID-6fv7-7u2t-gfgb |
|
| 23 |
| vulnerability |
VCID-6rk4-vb5u-bkg6 |
|
| 24 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 25 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 26 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 27 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 28 |
| vulnerability |
VCID-8j6v-xbhy-7uc2 |
|
| 29 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 30 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 31 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 32 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 33 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 34 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 35 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 36 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 37 |
| vulnerability |
VCID-cdar-9qhw-hke7 |
|
| 38 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 39 |
| vulnerability |
VCID-dndt-tapy-23d2 |
|
| 40 |
| vulnerability |
VCID-f276-amhj-9yfx |
|
| 41 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 42 |
| vulnerability |
VCID-f922-jx9w-mbc5 |
|
| 43 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 44 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 45 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 46 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 47 |
| vulnerability |
VCID-gnur-763x-qkcu |
|
| 48 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 49 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 50 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 51 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 52 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 53 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 54 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 55 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 56 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 57 |
| vulnerability |
VCID-mq44-5pmp-2qhh |
|
| 58 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 59 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 60 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 61 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 62 |
| vulnerability |
VCID-p9v4-nweu-vydg |
|
| 63 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 64 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 65 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 66 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 67 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 68 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 69 |
| vulnerability |
VCID-rfdp-gsgs-eubq |
|
| 70 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 71 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 72 |
| vulnerability |
VCID-s6gu-gm97-fyfk |
|
| 73 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 74 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 75 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 76 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 77 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 78 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 79 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 80 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 81 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 82 |
| vulnerability |
VCID-uh5a-zcds-3bcc |
|
| 83 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 84 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 85 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 86 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 87 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 88 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 89 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 90 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 91 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 92 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 93 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 94 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.36.0 |
|
|
| aliases |
CVE-2014-0138
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-q9ht-ra39-kuef |
|
| 43 |
| url |
VCID-qe9z-wuze-tucq |
| vulnerability_id |
VCID-qe9z-wuze-tucq |
| summary |
multiple issues |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.51.0 |
| purl |
pkg:generic/curl.se/curl@7.51.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 7 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 8 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 9 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 10 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 11 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 12 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 13 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 14 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 15 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 16 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 17 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 18 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 19 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 20 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 21 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 22 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 23 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 24 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 25 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 26 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 27 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 28 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 29 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 30 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 31 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 32 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 33 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 34 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 35 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 36 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 37 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 38 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 39 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 40 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 41 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 42 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 43 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 44 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 45 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 46 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 47 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 48 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 49 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 50 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 51 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 52 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 53 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 54 |
| vulnerability |
VCID-raxd-4nxj-gkhp |
|
| 55 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 56 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 57 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 58 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 59 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 60 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 61 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 62 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 63 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 64 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 65 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 66 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 67 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 68 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 69 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 70 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 71 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 72 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0 |
|
|
| aliases |
CVE-2016-8616
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qe9z-wuze-tucq |
|
| 44 |
| url |
VCID-r2g9-c896-rkge |
| vulnerability_id |
VCID-r2g9-c896-rkge |
| summary |
A use after free vulnerability exists in curl <7.87.0. Curl can be asked to *tunnel* virtually all protocols it supports through an HTTP proxy. HTTP proxies can (and often do) deny such tunnel operations. When getting denied to tunnel the specific protocols SMB or TELNET, curl would use a heap-allocated struct after it had been freed, in its transfer shutdown code path. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.87.0 |
| purl |
pkg:generic/curl.se/curl@7.87.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 1 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 2 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 3 |
| vulnerability |
VCID-287k-bzqy-n7ag |
|
| 4 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 5 |
| vulnerability |
VCID-3p2z-61gq-muhs |
|
| 6 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 7 |
| vulnerability |
VCID-6en5-etsd-2bce |
|
| 8 |
| vulnerability |
VCID-6ggz-pa5t-77c4 |
|
| 9 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 10 |
| vulnerability |
VCID-85qb-zec7-subc |
|
| 11 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 12 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 13 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 14 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 15 |
| vulnerability |
VCID-cfry-nx5h-kudv |
|
| 16 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 17 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 18 |
| vulnerability |
VCID-ffmg-djmk-57hn |
|
| 19 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 20 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 21 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 22 |
| vulnerability |
VCID-gux4-dncg-h7a6 |
|
| 23 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 24 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 25 |
| vulnerability |
VCID-k3nv-gf9b-5ua2 |
|
| 26 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 27 |
| vulnerability |
VCID-nwvb-d466-4uaa |
|
| 28 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 29 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 30 |
| vulnerability |
VCID-razg-yr7y-ukgd |
|
| 31 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 32 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 33 |
| vulnerability |
VCID-u1p8-s8vm-3yer |
|
| 34 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 35 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 36 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 37 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 38 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 39 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 40 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.87.0 |
|
|
| aliases |
CVE-2022-43552
|
| risk_score |
2.6 |
| exploitability |
0.5 |
| weighted_severity |
5.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-r2g9-c896-rkge |
|
| 45 |
| url |
VCID-rfdp-gsgs-eubq |
| vulnerability_id |
VCID-rfdp-gsgs-eubq |
| summary |
Multiple untrusted search path vulnerabilities in cURL and libcurl before 7.49.1, when built with SSPI or telnet is enabled, allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) security.dll, (2) secur32.dll, or (3) ws2_32.dll in the application or current working directory. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.49.1 |
| purl |
pkg:generic/curl.se/curl@7.49.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1y6d-7vfu-ybb3 |
|
| 7 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 8 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 9 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 10 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 11 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 12 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 13 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 14 |
| vulnerability |
VCID-51ac-1jc2-vfed |
|
| 15 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 16 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 17 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 18 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 19 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 20 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 21 |
| vulnerability |
VCID-6rk4-vb5u-bkg6 |
|
| 22 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 23 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 24 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 25 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 26 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 27 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 28 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 29 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 30 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 31 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 32 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 33 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 34 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 35 |
| vulnerability |
VCID-dndt-tapy-23d2 |
|
| 36 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 37 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 38 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 39 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 40 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 41 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 42 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 43 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 44 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 45 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 46 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 47 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 48 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 49 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 50 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 51 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 52 |
| vulnerability |
VCID-mq44-5pmp-2qhh |
|
| 53 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 54 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 55 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 56 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 57 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 58 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 59 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 60 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 61 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 62 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 63 |
| vulnerability |
VCID-raxd-4nxj-gkhp |
|
| 64 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 65 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 66 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 67 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 68 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 69 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 70 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 71 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 72 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 73 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 74 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 75 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 76 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 77 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 78 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 79 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 80 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 81 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 82 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 83 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 84 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 85 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 86 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 87 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 88 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.49.1 |
|
|
| aliases |
CVE-2016-4802
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-rfdp-gsgs-eubq |
|
| 46 |
| url |
VCID-rt5e-saz2-j7c9 |
| vulnerability_id |
VCID-rt5e-saz2-j7c9 |
| summary |
libcurl 7.1 through 7.57.0 might accidentally leak authentication data to third parties. When asked to send custom headers in its HTTP requests, libcurl will send that set of headers first to the host in the initial URL but also, if asked to follow redirects and a 30X HTTP response code is returned, to the host mentioned in URL in the `Location:` response header value. Sending the same set of headers to subsequent hosts is in particular a problem for applications that pass on custom `Authorization:` headers, as this header often contains privacy sensitive information or data that could allow others to impersonate the libcurl-using client's request. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.58.0 |
| purl |
pkg:generic/curl.se/curl@7.58.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 3 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 4 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 5 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 6 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 7 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 8 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 9 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 10 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 11 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 12 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 13 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 14 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 15 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 16 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 17 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 18 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 19 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 20 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 21 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 22 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 23 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 24 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 25 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 26 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 27 |
| vulnerability |
VCID-cfry-nx5h-kudv |
|
| 28 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 29 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 30 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 31 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 32 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 33 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 34 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 35 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 36 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 37 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 38 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 39 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 40 |
| vulnerability |
VCID-kae8-wmf2-2kf1 |
|
| 41 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 42 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 43 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 44 |
| vulnerability |
VCID-p7mn-a632-c3ag |
|
| 45 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 46 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 47 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 48 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 49 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 50 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 51 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 52 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 53 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 54 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 55 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 56 |
| vulnerability |
VCID-uj78-2cgz-zbdb |
|
| 57 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 58 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 59 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 60 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 61 |
| vulnerability |
VCID-wbwx-5vg3-uqcd |
|
| 62 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 63 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 64 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 65 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 66 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 67 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.58.0 |
|
|
| aliases |
CVE-2018-1000007
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-rt5e-saz2-j7c9 |
|
| 47 |
| url |
VCID-s2gu-8jpq-mub9 |
| vulnerability_id |
VCID-s2gu-8jpq-mub9 |
| summary |
Multiple integer overflows in the (1) curl_escape, (2) curl_easy_escape, (3) curl_unescape, and (4) curl_easy_unescape functions in libcurl before 7.50.3 allow attackers to have unspecified impact via a string of length 0xffffffff, which triggers a heap-based buffer overflow. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.50.3 |
| purl |
pkg:generic/curl.se/curl@7.50.3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1y6d-7vfu-ybb3 |
|
| 7 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 8 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 9 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 10 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 11 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 12 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 13 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 14 |
| vulnerability |
VCID-51ac-1jc2-vfed |
|
| 15 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 16 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 17 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 18 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 19 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 20 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 21 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 22 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 23 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 24 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 25 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 26 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 27 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 28 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 29 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 30 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 31 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 32 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 33 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 34 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 35 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 36 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 37 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 38 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 39 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 40 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 41 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 42 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 43 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 44 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 45 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 46 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 47 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 48 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 49 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 50 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 51 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 52 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 53 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 54 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 55 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 56 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 57 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 58 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 59 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 60 |
| vulnerability |
VCID-raxd-4nxj-gkhp |
|
| 61 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 62 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 63 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 64 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 65 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 66 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 67 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 68 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 69 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 70 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 71 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 72 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 73 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 74 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 75 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 76 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 77 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 78 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 79 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 80 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 81 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 82 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 83 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.50.3 |
|
|
| aliases |
CVE-2016-7167
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-s2gu-8jpq-mub9 |
|
| 48 |
|
| 49 |
| url |
VCID-sesh-938m-x3f8 |
| vulnerability_id |
VCID-sesh-938m-x3f8 |
| summary |
multiple issues |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.51.0 |
| purl |
pkg:generic/curl.se/curl@7.51.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 7 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 8 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 9 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 10 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 11 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 12 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 13 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 14 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 15 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 16 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 17 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 18 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 19 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 20 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 21 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 22 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 23 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 24 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 25 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 26 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 27 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 28 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 29 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 30 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 31 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 32 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 33 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 34 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 35 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 36 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 37 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 38 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 39 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 40 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 41 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 42 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 43 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 44 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 45 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 46 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 47 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 48 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 49 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 50 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 51 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 52 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 53 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 54 |
| vulnerability |
VCID-raxd-4nxj-gkhp |
|
| 55 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 56 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 57 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 58 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 59 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 60 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 61 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 62 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 63 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 64 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 65 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 66 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 67 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 68 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 69 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 70 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 71 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 72 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0 |
|
|
| aliases |
CVE-2016-8618
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-sesh-938m-x3f8 |
|
| 50 |
| url |
VCID-snsg-c2up-b7cn |
| vulnerability_id |
VCID-snsg-c2up-b7cn |
| summary |
multiple issues |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.51.0 |
| purl |
pkg:generic/curl.se/curl@7.51.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 7 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 8 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 9 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 10 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 11 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 12 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 13 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 14 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 15 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 16 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 17 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 18 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 19 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 20 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 21 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 22 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 23 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 24 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 25 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 26 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 27 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 28 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 29 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 30 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 31 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 32 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 33 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 34 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 35 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 36 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 37 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 38 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 39 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 40 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 41 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 42 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 43 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 44 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 45 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 46 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 47 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 48 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 49 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 50 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 51 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 52 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 53 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 54 |
| vulnerability |
VCID-raxd-4nxj-gkhp |
|
| 55 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 56 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 57 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 58 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 59 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 60 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 61 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 62 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 63 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 64 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 65 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 66 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 67 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 68 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 69 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 70 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 71 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 72 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0 |
|
|
| aliases |
CVE-2016-8623
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-snsg-c2up-b7cn |
|
| 51 |
| url |
VCID-sutv-qt2x-2yc7 |
| vulnerability_id |
VCID-sutv-qt2x-2yc7 |
| summary |
An information disclosure vulnerability exists in curl <v8.1.0 when doing HTTP(S) transfers, libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even when the `CURLOPT_POSTFIELDS` option has been set, if the same handle previously wasused to issue a `PUT` request which used that callback. This flaw may surprise the application and cause it to misbehave and either send off the wrong data or use memory after free or similar in the second transfer. The problem exists in the logic for a reused handle when it is (expected to be) changed from a PUT to a POST. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@8.1.0 |
| purl |
pkg:generic/curl.se/curl@8.1.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 1 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 2 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 3 |
| vulnerability |
VCID-3p2z-61gq-muhs |
|
| 4 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 5 |
| vulnerability |
VCID-6ggz-pa5t-77c4 |
|
| 6 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 7 |
| vulnerability |
VCID-85qb-zec7-subc |
|
| 8 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 9 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 10 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 11 |
| vulnerability |
VCID-ffmg-djmk-57hn |
|
| 12 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 13 |
| vulnerability |
VCID-gux4-dncg-h7a6 |
|
| 14 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 15 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 16 |
| vulnerability |
VCID-k3nv-gf9b-5ua2 |
|
| 17 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 18 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 19 |
| vulnerability |
VCID-razg-yr7y-ukgd |
|
| 20 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 21 |
| vulnerability |
VCID-u1p8-s8vm-3yer |
|
| 22 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 23 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 24 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 25 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 26 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 27 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 28 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.1.0 |
|
|
| aliases |
CVE-2023-28322
|
| risk_score |
1.6 |
| exploitability |
0.5 |
| weighted_severity |
3.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-sutv-qt2x-2yc7 |
|
| 52 |
| url |
VCID-td39-d3tf-vkhc |
| vulnerability_id |
VCID-td39-d3tf-vkhc |
| summary |
multiple issues |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.78.0 |
| purl |
pkg:generic/curl.se/curl@7.78.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 1 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 2 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 3 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 4 |
| vulnerability |
VCID-287k-bzqy-n7ag |
|
| 5 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 6 |
| vulnerability |
VCID-3p2z-61gq-muhs |
|
| 7 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 8 |
| vulnerability |
VCID-6ggz-pa5t-77c4 |
|
| 9 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 10 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 11 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 12 |
| vulnerability |
VCID-7z3h-9pk3-rqct |
|
| 13 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 14 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 15 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 16 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 17 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 18 |
| vulnerability |
VCID-cfry-nx5h-kudv |
|
| 19 |
| vulnerability |
VCID-cjyz-fdnv-b3g4 |
|
| 20 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 21 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 22 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 23 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 24 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 25 |
| vulnerability |
VCID-h4nw-va5b-23ef |
|
| 26 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 27 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 28 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 29 |
| vulnerability |
VCID-k5vr-1fmp-sqbw |
|
| 30 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 31 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 32 |
| vulnerability |
VCID-ns58-vmsz-5ued |
|
| 33 |
| vulnerability |
VCID-nwvb-d466-4uaa |
|
| 34 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 35 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 36 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 37 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 38 |
| vulnerability |
VCID-razg-yr7y-ukgd |
|
| 39 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 40 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 41 |
| vulnerability |
VCID-tzs5-qzhn-rqbk |
|
| 42 |
| vulnerability |
VCID-u1p8-s8vm-3yer |
|
| 43 |
| vulnerability |
VCID-urgp-rqyc-sqer |
|
| 44 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 45 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 46 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 47 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 48 |
| vulnerability |
VCID-wbwx-5vg3-uqcd |
|
| 49 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 50 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 51 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 52 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 53 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 54 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.78.0 |
|
|
| aliases |
CVE-2021-22924
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-td39-d3tf-vkhc |
|
| 53 |
| url |
VCID-tn33-re3r-yfhw |
| vulnerability_id |
VCID-tn33-re3r-yfhw |
| summary |
Out-of-bounds Write
A buffer overflow exists in curl 7.12.3 to and including curl 7.58.0 in the FTP URL handling that allows an attacker to cause a denial of service or worse. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.59.0 |
| purl |
pkg:generic/curl.se/curl@7.59.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 3 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 4 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 5 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 6 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 7 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 8 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 9 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 10 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 11 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 12 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 13 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 14 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 15 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 16 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 17 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 18 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 19 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 20 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 21 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 22 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 23 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 24 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 25 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 26 |
| vulnerability |
VCID-cfry-nx5h-kudv |
|
| 27 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 28 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 29 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 30 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 31 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 32 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 33 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 34 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 35 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 36 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 37 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 38 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 39 |
| vulnerability |
VCID-kae8-wmf2-2kf1 |
|
| 40 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 41 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 42 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 43 |
| vulnerability |
VCID-p7mn-a632-c3ag |
|
| 44 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 45 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 46 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 47 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 48 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 49 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 50 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 51 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 52 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 53 |
| vulnerability |
VCID-ubnn-z97k-47gw |
|
| 54 |
| vulnerability |
VCID-uj78-2cgz-zbdb |
|
| 55 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 56 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 57 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 58 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 59 |
| vulnerability |
VCID-wbwx-5vg3-uqcd |
|
| 60 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 61 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 62 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 63 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 64 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 65 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.59.0 |
|
|
| aliases |
CVE-2018-1000120, GHSA-674j-7m97-j2p9
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-tn33-re3r-yfhw |
|
| 54 |
| url |
VCID-tyqp-e8cp-dbbm |
| vulnerability_id |
VCID-tyqp-e8cp-dbbm |
| summary |
cURL and libcurl 7.1 before 7.36.0, when using the OpenSSL, axtls, qsossl or gskit libraries for TLS, recognize a wildcard IP address in the subject's Common Name (CN) field of an X.509 certificate, which might allow man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.36.0 |
| purl |
pkg:generic/curl.se/curl@7.36.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1y6d-7vfu-ybb3 |
|
| 7 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 8 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 9 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 10 |
| vulnerability |
VCID-2u6v-6vm9-z3by |
|
| 11 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 12 |
| vulnerability |
VCID-3s4s-6c3v-7kgn |
|
| 13 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 14 |
| vulnerability |
VCID-3xcn-bur1-tkdt |
|
| 15 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 16 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 17 |
| vulnerability |
VCID-51ac-1jc2-vfed |
|
| 18 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 19 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 20 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 21 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 22 |
| vulnerability |
VCID-6fv7-7u2t-gfgb |
|
| 23 |
| vulnerability |
VCID-6rk4-vb5u-bkg6 |
|
| 24 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 25 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 26 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 27 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 28 |
| vulnerability |
VCID-8j6v-xbhy-7uc2 |
|
| 29 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 30 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 31 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 32 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 33 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 34 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 35 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 36 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 37 |
| vulnerability |
VCID-cdar-9qhw-hke7 |
|
| 38 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 39 |
| vulnerability |
VCID-dndt-tapy-23d2 |
|
| 40 |
| vulnerability |
VCID-f276-amhj-9yfx |
|
| 41 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 42 |
| vulnerability |
VCID-f922-jx9w-mbc5 |
|
| 43 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 44 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 45 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 46 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 47 |
| vulnerability |
VCID-gnur-763x-qkcu |
|
| 48 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 49 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 50 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 51 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 52 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 53 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 54 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 55 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 56 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 57 |
| vulnerability |
VCID-mq44-5pmp-2qhh |
|
| 58 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 59 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 60 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 61 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 62 |
| vulnerability |
VCID-p9v4-nweu-vydg |
|
| 63 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 64 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 65 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 66 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 67 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 68 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 69 |
| vulnerability |
VCID-rfdp-gsgs-eubq |
|
| 70 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 71 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 72 |
| vulnerability |
VCID-s6gu-gm97-fyfk |
|
| 73 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 74 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 75 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 76 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 77 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 78 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 79 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 80 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 81 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 82 |
| vulnerability |
VCID-uh5a-zcds-3bcc |
|
| 83 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 84 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 85 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 86 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 87 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 88 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 89 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 90 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 91 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 92 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 93 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 94 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.36.0 |
|
|
| aliases |
CVE-2014-0139
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-tyqp-e8cp-dbbm |
|
| 55 |
| url |
VCID-uh5a-zcds-3bcc |
| vulnerability_id |
VCID-uh5a-zcds-3bcc |
| summary |
cURL and libcurl before 7.38.0 does not properly handle IP addresses in cookie domain names, which allows remote attackers to set cookies for or send arbitrary cookies to certain sites, as demonstrated by a site at 192.168.0.1 setting cookies for a site at 127.168.0.1. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.38.0 |
| purl |
pkg:generic/curl.se/curl@7.38.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1y6d-7vfu-ybb3 |
|
| 7 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 8 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 9 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 10 |
| vulnerability |
VCID-2u6v-6vm9-z3by |
|
| 11 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 12 |
| vulnerability |
VCID-3s4s-6c3v-7kgn |
|
| 13 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 14 |
| vulnerability |
VCID-3xcn-bur1-tkdt |
|
| 15 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 16 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 17 |
| vulnerability |
VCID-51ac-1jc2-vfed |
|
| 18 |
| vulnerability |
VCID-5sem-gndf-97e6 |
|
| 19 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 20 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 21 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 22 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 23 |
| vulnerability |
VCID-6fv7-7u2t-gfgb |
|
| 24 |
| vulnerability |
VCID-6rk4-vb5u-bkg6 |
|
| 25 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 26 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 27 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 28 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 29 |
| vulnerability |
VCID-8j6v-xbhy-7uc2 |
|
| 30 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 31 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 32 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 33 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 34 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 35 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 36 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 37 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 38 |
| vulnerability |
VCID-cdar-9qhw-hke7 |
|
| 39 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 40 |
| vulnerability |
VCID-dndt-tapy-23d2 |
|
| 41 |
| vulnerability |
VCID-f276-amhj-9yfx |
|
| 42 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 43 |
| vulnerability |
VCID-f922-jx9w-mbc5 |
|
| 44 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 45 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 46 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 47 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 48 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 49 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 50 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 51 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 52 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 53 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 54 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 55 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 56 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 57 |
| vulnerability |
VCID-mq44-5pmp-2qhh |
|
| 58 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 59 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 60 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 61 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 62 |
| vulnerability |
VCID-p9v4-nweu-vydg |
|
| 63 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 64 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 65 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 66 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 67 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 68 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 69 |
| vulnerability |
VCID-rfdp-gsgs-eubq |
|
| 70 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 71 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 72 |
| vulnerability |
VCID-s6gu-gm97-fyfk |
|
| 73 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 74 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 75 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 76 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 77 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 78 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 79 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 80 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 81 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 82 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 83 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 84 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 85 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 86 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 87 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 88 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 89 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 90 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 91 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 92 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 93 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.38.0 |
|
|
| aliases |
CVE-2014-3613
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-uh5a-zcds-3bcc |
|
| 56 |
| url |
VCID-vfc1-yy11-bycp |
| vulnerability_id |
VCID-vfc1-yy11-bycp |
| summary |
multiple issues |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.51.0 |
| purl |
pkg:generic/curl.se/curl@7.51.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 7 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 8 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 9 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 10 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 11 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 12 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 13 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 14 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 15 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 16 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 17 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 18 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 19 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 20 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 21 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 22 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 23 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 24 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 25 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 26 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 27 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 28 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 29 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 30 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 31 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 32 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 33 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 34 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 35 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 36 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 37 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 38 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 39 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 40 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 41 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 42 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 43 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 44 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 45 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 46 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 47 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 48 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 49 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 50 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 51 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 52 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 53 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 54 |
| vulnerability |
VCID-raxd-4nxj-gkhp |
|
| 55 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 56 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 57 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 58 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 59 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 60 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 61 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 62 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 63 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 64 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 65 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 66 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 67 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 68 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 69 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 70 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 71 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 72 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0 |
|
|
| aliases |
CVE-2016-8619
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vfc1-yy11-bycp |
|
| 57 |
| url |
VCID-vnqb-6t3e-rudt |
| vulnerability_id |
VCID-vnqb-6t3e-rudt |
| summary |
content_encoding.c in libcurl 7.10.5 through 7.19.7, when zlib is enabled, does not properly restrict the amount of callback data sent to an application that requests automatic decompression, which might allow remote attackers to cause a denial of service (application crash) or have unspecified other impact by sending crafted compressed data to an application that relies on the intended data-length limit. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.20.0 |
| purl |
pkg:generic/curl.se/curl@7.20.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 1 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 2 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 3 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 4 |
| vulnerability |
VCID-1yr3-4rvr-8kcv |
|
| 5 |
| vulnerability |
VCID-2u6v-6vm9-z3by |
|
| 6 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 7 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 8 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 9 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 10 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 11 |
| vulnerability |
VCID-64mt-9155-tkbv |
|
| 12 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 13 |
| vulnerability |
VCID-6fv7-7u2t-gfgb |
|
| 14 |
| vulnerability |
VCID-6rk4-vb5u-bkg6 |
|
| 15 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 16 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 17 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 18 |
| vulnerability |
VCID-8j6v-xbhy-7uc2 |
|
| 19 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 20 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 21 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 22 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 23 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 24 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 25 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 26 |
| vulnerability |
VCID-cdar-9qhw-hke7 |
|
| 27 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 28 |
| vulnerability |
VCID-dndt-tapy-23d2 |
|
| 29 |
| vulnerability |
VCID-e4qf-7gqs-qyg3 |
|
| 30 |
| vulnerability |
VCID-f276-amhj-9yfx |
|
| 31 |
| vulnerability |
VCID-f922-jx9w-mbc5 |
|
| 32 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 33 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 34 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 35 |
| vulnerability |
VCID-g72q-eedp-aufb |
|
| 36 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 37 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 38 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 39 |
| vulnerability |
VCID-hhu3-dp3m-gbgm |
|
| 40 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 41 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 42 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 43 |
| vulnerability |
VCID-nkmd-xb13-mbg9 |
|
| 44 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 45 |
| vulnerability |
VCID-p9v4-nweu-vydg |
|
| 46 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 47 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 48 |
| vulnerability |
VCID-q9ht-ra39-kuef |
|
| 49 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 50 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 51 |
| vulnerability |
VCID-rfdp-gsgs-eubq |
|
| 52 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 53 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 54 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 55 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 56 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 57 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 58 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 59 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 60 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 61 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 62 |
| vulnerability |
VCID-tyqp-e8cp-dbbm |
|
| 63 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 64 |
| vulnerability |
VCID-uh5a-zcds-3bcc |
|
| 65 |
| vulnerability |
VCID-v6z8-sjxs-h3f1 |
|
| 66 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 67 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 68 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 69 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 70 |
| vulnerability |
VCID-wc29-pw8g-mkgj |
|
| 71 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 72 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 73 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 74 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 75 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 76 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.20.0 |
|
|
| aliases |
CVE-2010-0734
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vnqb-6t3e-rudt |
|
| 58 |
| url |
VCID-vpkr-9akj-hbf6 |
| vulnerability_id |
VCID-vpkr-9akj-hbf6 |
| summary |
multiple issues |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.83.1 |
| purl |
pkg:generic/curl.se/curl@7.83.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 1 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 2 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 3 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 4 |
| vulnerability |
VCID-287k-bzqy-n7ag |
|
| 5 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 6 |
| vulnerability |
VCID-3p2z-61gq-muhs |
|
| 7 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 8 |
| vulnerability |
VCID-6en5-etsd-2bce |
|
| 9 |
| vulnerability |
VCID-6ggz-pa5t-77c4 |
|
| 10 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 11 |
| vulnerability |
VCID-7z3h-9pk3-rqct |
|
| 12 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 13 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 14 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 15 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 16 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 17 |
| vulnerability |
VCID-cfry-nx5h-kudv |
|
| 18 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 19 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 20 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 21 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 22 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 23 |
| vulnerability |
VCID-h4nw-va5b-23ef |
|
| 24 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 25 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 26 |
| vulnerability |
VCID-k5vr-1fmp-sqbw |
|
| 27 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 28 |
| vulnerability |
VCID-ns58-vmsz-5ued |
|
| 29 |
| vulnerability |
VCID-nwvb-d466-4uaa |
|
| 30 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 31 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 32 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 33 |
| vulnerability |
VCID-razg-yr7y-ukgd |
|
| 34 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 35 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 36 |
| vulnerability |
VCID-tzs5-qzhn-rqbk |
|
| 37 |
| vulnerability |
VCID-u1p8-s8vm-3yer |
|
| 38 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 39 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 40 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 41 |
| vulnerability |
VCID-wbwx-5vg3-uqcd |
|
| 42 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 43 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 44 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 45 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 46 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.83.1 |
|
|
| aliases |
CVE-2022-27782
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vpkr-9akj-hbf6 |
|
| 59 |
| url |
VCID-w472-84ep-fkdx |
| vulnerability_id |
VCID-w472-84ep-fkdx |
| summary |
multiple issues |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@8.4.0 |
| purl |
pkg:generic/curl.se/curl@8.4.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 1 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 2 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 3 |
| vulnerability |
VCID-3p2z-61gq-muhs |
|
| 4 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 5 |
| vulnerability |
VCID-6ggz-pa5t-77c4 |
|
| 6 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 7 |
| vulnerability |
VCID-85qb-zec7-subc |
|
| 8 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 9 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 10 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 11 |
| vulnerability |
VCID-ffmg-djmk-57hn |
|
| 12 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 13 |
| vulnerability |
VCID-gux4-dncg-h7a6 |
|
| 14 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 15 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 16 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 17 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 18 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 19 |
| vulnerability |
VCID-u1p8-s8vm-3yer |
|
| 20 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 21 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 22 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 23 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 24 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 25 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.4.0 |
|
|
| aliases |
CVE-2023-38546
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-w472-84ep-fkdx |
|
| 60 |
| url |
VCID-wc29-pw8g-mkgj |
| vulnerability_id |
VCID-wc29-pw8g-mkgj |
| summary |
The Curl_input_negotiate function in http_negotiate.c in libcurl 7.10.6 through 7.21.6, as used in curl and other products, always performs credential delegation during GSSAPI authentication, which allows remote servers to impersonate clients via GSSAPI requests. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.21.7 |
| purl |
pkg:generic/curl.se/curl@7.21.7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 1 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 2 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 3 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 4 |
| vulnerability |
VCID-1yr3-4rvr-8kcv |
|
| 5 |
| vulnerability |
VCID-2u6v-6vm9-z3by |
|
| 6 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 7 |
| vulnerability |
VCID-3s4s-6c3v-7kgn |
|
| 8 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 9 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 10 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 11 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 12 |
| vulnerability |
VCID-64mt-9155-tkbv |
|
| 13 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 14 |
| vulnerability |
VCID-6fv7-7u2t-gfgb |
|
| 15 |
| vulnerability |
VCID-6rk4-vb5u-bkg6 |
|
| 16 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 17 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 18 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 19 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 20 |
| vulnerability |
VCID-8j6v-xbhy-7uc2 |
|
| 21 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 22 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 23 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 24 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 25 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 26 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 27 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 28 |
| vulnerability |
VCID-cdar-9qhw-hke7 |
|
| 29 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 30 |
| vulnerability |
VCID-cmcn-f8ws-q3h2 |
|
| 31 |
| vulnerability |
VCID-dndt-tapy-23d2 |
|
| 32 |
| vulnerability |
VCID-e4qf-7gqs-qyg3 |
|
| 33 |
| vulnerability |
VCID-f276-amhj-9yfx |
|
| 34 |
| vulnerability |
VCID-f922-jx9w-mbc5 |
|
| 35 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 36 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 37 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 38 |
| vulnerability |
VCID-g72q-eedp-aufb |
|
| 39 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 40 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 41 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 42 |
| vulnerability |
VCID-hhu3-dp3m-gbgm |
|
| 43 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 44 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 45 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 46 |
| vulnerability |
VCID-nkmd-xb13-mbg9 |
|
| 47 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 48 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 49 |
| vulnerability |
VCID-p9v4-nweu-vydg |
|
| 50 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 51 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 52 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 53 |
| vulnerability |
VCID-q9ht-ra39-kuef |
|
| 54 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 55 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 56 |
| vulnerability |
VCID-rfdp-gsgs-eubq |
|
| 57 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 58 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 59 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 60 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 61 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 62 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 63 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 64 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 65 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 66 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 67 |
| vulnerability |
VCID-tyqp-e8cp-dbbm |
|
| 68 |
| vulnerability |
VCID-ugrr-z2zv-6qgp |
|
| 69 |
| vulnerability |
VCID-uh5a-zcds-3bcc |
|
| 70 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 71 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 72 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 73 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 74 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 75 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 76 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 77 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 78 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 79 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.21.7 |
|
|
| aliases |
CVE-2011-2192
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wc29-pw8g-mkgj |
|
| 61 |
| url |
VCID-xgj8-zrta-kub9 |
| vulnerability_id |
VCID-xgj8-zrta-kub9 |
| summary |
|
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.84.0 |
| purl |
pkg:generic/curl.se/curl@7.84.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 1 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 2 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 3 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 4 |
| vulnerability |
VCID-287k-bzqy-n7ag |
|
| 5 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 6 |
| vulnerability |
VCID-3p2z-61gq-muhs |
|
| 7 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 8 |
| vulnerability |
VCID-6en5-etsd-2bce |
|
| 9 |
| vulnerability |
VCID-6ggz-pa5t-77c4 |
|
| 10 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 11 |
| vulnerability |
VCID-85qb-zec7-subc |
|
| 12 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 13 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 14 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 15 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 16 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 17 |
| vulnerability |
VCID-cfry-nx5h-kudv |
|
| 18 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 19 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 20 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 21 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 22 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 23 |
| vulnerability |
VCID-h4nw-va5b-23ef |
|
| 24 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 25 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 26 |
| vulnerability |
VCID-k3nv-gf9b-5ua2 |
|
| 27 |
| vulnerability |
VCID-k5vr-1fmp-sqbw |
|
| 28 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 29 |
| vulnerability |
VCID-mpuf-pp6z-q3d6 |
|
| 30 |
| vulnerability |
VCID-ns58-vmsz-5ued |
|
| 31 |
| vulnerability |
VCID-nwvb-d466-4uaa |
|
| 32 |
| vulnerability |
VCID-p155-gbtu-abg1 |
|
| 33 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 34 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 35 |
| vulnerability |
VCID-razg-yr7y-ukgd |
|
| 36 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 37 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 38 |
| vulnerability |
VCID-u1p8-s8vm-3yer |
|
| 39 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 40 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 41 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 42 |
| vulnerability |
VCID-wgur-psum-pbck |
|
| 43 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 44 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 45 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.84.0 |
|
|
| aliases |
CVE-2022-32208
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xgj8-zrta-kub9 |
|
| 62 |
| url |
VCID-xyze-msxs-1qem |
| vulnerability_id |
VCID-xyze-msxs-1qem |
| summary |
multiple issues |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.51.0 |
| purl |
pkg:generic/curl.se/curl@7.51.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 7 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 8 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 9 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 10 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 11 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 12 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 13 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 14 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 15 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 16 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 17 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 18 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 19 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 20 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 21 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 22 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 23 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 24 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 25 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 26 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 27 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 28 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 29 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 30 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 31 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 32 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 33 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 34 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 35 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 36 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 37 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 38 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 39 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 40 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 41 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 42 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 43 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 44 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 45 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 46 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 47 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 48 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 49 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 50 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 51 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 52 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 53 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 54 |
| vulnerability |
VCID-raxd-4nxj-gkhp |
|
| 55 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 56 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 57 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 58 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 59 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 60 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 61 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 62 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 63 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 64 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 65 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 66 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 67 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 68 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 69 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 70 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 71 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 72 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0 |
|
|
| aliases |
CVE-2016-8617
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xyze-msxs-1qem |
|
| 63 |
|
| 64 |
| url |
VCID-y8yr-dfz4-67fp |
| vulnerability_id |
VCID-y8yr-dfz4-67fp |
| summary |
The redirect implementation in curl and libcurl 5.11 through 7.19.3, when CURLOPT_FOLLOWLOCATION is enabled, accepts arbitrary Location values, which might allow remote HTTP servers to (1) trigger arbitrary requests to intranet servers, (2) read or overwrite arbitrary files via a redirect to a file: URL, or (3) execute arbitrary commands via a redirect to an scp: URL. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.19.4 |
| purl |
pkg:generic/curl.se/curl@7.19.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 1 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 2 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 3 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 4 |
| vulnerability |
VCID-2u6v-6vm9-z3by |
|
| 5 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 6 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 7 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 8 |
| vulnerability |
VCID-5xjw-u8ad-n3g5 |
|
| 9 |
| vulnerability |
VCID-64mt-9155-tkbv |
|
| 10 |
| vulnerability |
VCID-6fv7-7u2t-gfgb |
|
| 11 |
| vulnerability |
VCID-6rk4-vb5u-bkg6 |
|
| 12 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 13 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 14 |
| vulnerability |
VCID-8j6v-xbhy-7uc2 |
|
| 15 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 16 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 17 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 18 |
| vulnerability |
VCID-av4f-gxku-qbhp |
|
| 19 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 20 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 21 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 22 |
| vulnerability |
VCID-cdar-9qhw-hke7 |
|
| 23 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 24 |
| vulnerability |
VCID-dndt-tapy-23d2 |
|
| 25 |
| vulnerability |
VCID-e4qf-7gqs-qyg3 |
|
| 26 |
| vulnerability |
VCID-f276-amhj-9yfx |
|
| 27 |
| vulnerability |
VCID-f922-jx9w-mbc5 |
|
| 28 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 29 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 30 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 31 |
| vulnerability |
VCID-g72q-eedp-aufb |
|
| 32 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 33 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 34 |
| vulnerability |
VCID-hhu3-dp3m-gbgm |
|
| 35 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 36 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 37 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 38 |
| vulnerability |
VCID-nkmd-xb13-mbg9 |
|
| 39 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 40 |
| vulnerability |
VCID-p9v4-nweu-vydg |
|
| 41 |
| vulnerability |
VCID-q2kb-mjg4-uba1 |
|
| 42 |
| vulnerability |
VCID-q8ja-keyk-fyfb |
|
| 43 |
| vulnerability |
VCID-q9ht-ra39-kuef |
|
| 44 |
| vulnerability |
VCID-qe9z-wuze-tucq |
|
| 45 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 46 |
| vulnerability |
VCID-rfdp-gsgs-eubq |
|
| 47 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 48 |
| vulnerability |
VCID-s2gu-8jpq-mub9 |
|
| 49 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 50 |
| vulnerability |
VCID-sesh-938m-x3f8 |
|
| 51 |
| vulnerability |
VCID-snsg-c2up-b7cn |
|
| 52 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 53 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 54 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 55 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 56 |
| vulnerability |
VCID-tyqp-e8cp-dbbm |
|
| 57 |
| vulnerability |
VCID-uh5a-zcds-3bcc |
|
| 58 |
| vulnerability |
VCID-vfc1-yy11-bycp |
|
| 59 |
| vulnerability |
VCID-vnqb-6t3e-rudt |
|
| 60 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 61 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 62 |
| vulnerability |
VCID-wc29-pw8g-mkgj |
|
| 63 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 64 |
| vulnerability |
VCID-xyze-msxs-1qem |
|
| 65 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 66 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 67 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
| 68 |
| vulnerability |
VCID-zv25-wupq-bqfk |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.19.4 |
|
|
| aliases |
CVE-2009-0037
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-y8yr-dfz4-67fp |
|
| 65 |
| url |
VCID-zg98-v6dj-s7gv |
| vulnerability_id |
VCID-zg98-v6dj-s7gv |
| summary |
multiple issues |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.62.0 |
| purl |
pkg:generic/curl.se/curl@7.62.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 3 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 4 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 5 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 6 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 7 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 8 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 9 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 10 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 11 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 12 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 13 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 14 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 15 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 16 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 17 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 18 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 19 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 20 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 21 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 22 |
| vulnerability |
VCID-byzw-xw9s-pkga |
|
| 23 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 24 |
| vulnerability |
VCID-cfry-nx5h-kudv |
|
| 25 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 26 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 27 |
| vulnerability |
VCID-fcb7-8163-muf4 |
|
| 28 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 29 |
| vulnerability |
VCID-fp66-fzqt-6yg7 |
|
| 30 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 31 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 32 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 33 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 34 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 35 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 36 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 37 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 38 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 39 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 40 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 41 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 42 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 43 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 44 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 45 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 46 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 47 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 48 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 49 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 50 |
| vulnerability |
VCID-uj78-2cgz-zbdb |
|
| 51 |
| vulnerability |
VCID-v82t-s9e1-2fbw |
|
| 52 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 53 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 54 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 55 |
| vulnerability |
VCID-wbwx-5vg3-uqcd |
|
| 56 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 57 |
| vulnerability |
VCID-xc5k-47n9-43d6 |
|
| 58 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 59 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 60 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 61 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.62.0 |
|
|
| aliases |
CVE-2018-16842
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zg98-v6dj-s7gv |
|
| 66 |
| url |
VCID-zqyj-7rr3-fqew |
| vulnerability_id |
VCID-zqyj-7rr3-fqew |
| summary |
The ourWriteOut function in tool_writeout.c in curl 7.53.1 might allow physically proximate attackers to obtain sensitive information from process memory in opportunistic circumstances by reading a workstation screen during use of a --write-out argument ending in a '%' character, which leads to a heap-based buffer over-read. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.54.0 |
| purl |
pkg:generic/curl.se/curl@7.54.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-15sy-wmte-h3ae |
|
| 1 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 2 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 7 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 8 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 9 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 10 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 11 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 12 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 13 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 14 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 15 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 16 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 17 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 18 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 19 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 20 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 21 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 22 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 23 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 24 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 25 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 26 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 27 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 28 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 29 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 30 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 31 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 32 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 33 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 34 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 35 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 36 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 37 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 38 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 39 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 40 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 41 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 42 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 43 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 44 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 45 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 46 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 47 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 48 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 49 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 50 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 51 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 52 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 53 |
| vulnerability |
VCID-raxd-4nxj-gkhp |
|
| 54 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 55 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 56 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 57 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 58 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 59 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 60 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 61 |
| vulnerability |
VCID-uj78-2cgz-zbdb |
|
| 62 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 63 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 64 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 65 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 66 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 67 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 68 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 69 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 70 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.54.0 |
|
|
| aliases |
CVE-2017-7407
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zqyj-7rr3-fqew |
|
| 67 |
| url |
VCID-zv25-wupq-bqfk |
| vulnerability_id |
VCID-zv25-wupq-bqfk |
| summary |
multiple issues |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:generic/curl.se/curl@7.51.0 |
| purl |
pkg:generic/curl.se/curl@7.51.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18p4-rvxz-pkeu |
|
| 1 |
| vulnerability |
VCID-1a1k-d4ez-ybdu |
|
| 2 |
| vulnerability |
VCID-1b5g-9trz-7ufb |
|
| 3 |
| vulnerability |
VCID-1dw3-33ju-jkbs |
|
| 4 |
| vulnerability |
VCID-1kpz-55f1-f7dj |
|
| 5 |
| vulnerability |
VCID-1m1w-rayk-sffe |
|
| 6 |
| vulnerability |
VCID-1zsv-4jdy-63en |
|
| 7 |
| vulnerability |
VCID-21ff-tazv-9ud3 |
|
| 8 |
| vulnerability |
VCID-27bv-f11z-myak |
|
| 9 |
| vulnerability |
VCID-39qh-jayw-g3dh |
|
| 10 |
| vulnerability |
VCID-3ws4-1sak-r3ck |
|
| 11 |
| vulnerability |
VCID-4hha-2z31-2bf8 |
|
| 12 |
| vulnerability |
VCID-4zcd-rbx3-qye5 |
|
| 13 |
| vulnerability |
VCID-58p5-pfy3-xug1 |
|
| 14 |
| vulnerability |
VCID-5svr-3vv9-mqea |
|
| 15 |
| vulnerability |
VCID-5ujs-47hf-g7gj |
|
| 16 |
| vulnerability |
VCID-5un8-xymy-37bt |
|
| 17 |
| vulnerability |
VCID-6745-tyba-33fa |
|
| 18 |
| vulnerability |
VCID-738z-myg9-37hr |
|
| 19 |
| vulnerability |
VCID-7jrx-ykk8-h3gp |
|
| 20 |
| vulnerability |
VCID-7wqd-99h2-e7hk |
|
| 21 |
| vulnerability |
VCID-7yvu-s3p2-sfhc |
|
| 22 |
| vulnerability |
VCID-a58z-fu87-9ybs |
|
| 23 |
| vulnerability |
VCID-a8z6-bswu-jue8 |
|
| 24 |
| vulnerability |
VCID-am31-t2h3-zbgw |
|
| 25 |
| vulnerability |
VCID-azcz-b8f2-63be |
|
| 26 |
| vulnerability |
VCID-bb6v-z8yg-6fe3 |
|
| 27 |
| vulnerability |
VCID-bcuq-n4vb-k7f3 |
|
| 28 |
| vulnerability |
VCID-bx2m-n5ft-3be8 |
|
| 29 |
| vulnerability |
VCID-cdzf-3ydt-8bdk |
|
| 30 |
| vulnerability |
VCID-f7n8-zzhz-fuc8 |
|
| 31 |
| vulnerability |
VCID-f8vu-23bb-5ue7 |
|
| 32 |
| vulnerability |
VCID-f9nm-d5ax-qkcb |
|
| 33 |
| vulnerability |
VCID-fhc8-r8gv-bugj |
|
| 34 |
| vulnerability |
VCID-g4n9-kg3s-pfcr |
|
| 35 |
| vulnerability |
VCID-g7ux-4vz2-ckfg |
|
| 36 |
| vulnerability |
VCID-gud1-yg9u-zyfp |
|
| 37 |
| vulnerability |
VCID-gueb-wzpx-ufb2 |
|
| 38 |
| vulnerability |
VCID-h6xj-mys4-pucf |
|
| 39 |
| vulnerability |
VCID-hhms-2hg6-nke9 |
|
| 40 |
| vulnerability |
VCID-j688-cyfg-p7gu |
|
| 41 |
| vulnerability |
VCID-jf17-h97b-6bak |
|
| 42 |
| vulnerability |
VCID-jnq1-hk6d-b3a3 |
|
| 43 |
| vulnerability |
VCID-kkrm-dj79-4ucj |
|
| 44 |
| vulnerability |
VCID-kq38-7s5x-nqaz |
|
| 45 |
| vulnerability |
VCID-mh96-gkf1-9uek |
|
| 46 |
| vulnerability |
VCID-msd2-35g9-nyd2 |
|
| 47 |
| vulnerability |
VCID-naac-snjw-qbad |
|
| 48 |
| vulnerability |
VCID-p8vk-yf66-wbb7 |
|
| 49 |
| vulnerability |
VCID-p97a-kjpp-f3d8 |
|
| 50 |
| vulnerability |
VCID-q46r-7nct-s3bw |
|
| 51 |
| vulnerability |
VCID-q8tg-prj1-y7b8 |
|
| 52 |
| vulnerability |
VCID-qrnc-7ywu-37cz |
|
| 53 |
| vulnerability |
VCID-r2g9-c896-rkge |
|
| 54 |
| vulnerability |
VCID-raxd-4nxj-gkhp |
|
| 55 |
| vulnerability |
VCID-rt5e-saz2-j7c9 |
|
| 56 |
| vulnerability |
VCID-secz-78pt-dben |
|
| 57 |
| vulnerability |
VCID-sutv-qt2x-2yc7 |
|
| 58 |
| vulnerability |
VCID-swmn-7ns9-ekg1 |
|
| 59 |
| vulnerability |
VCID-tcxd-z7f3-kkes |
|
| 60 |
| vulnerability |
VCID-td39-d3tf-vkhc |
|
| 61 |
| vulnerability |
VCID-tn33-re3r-yfhw |
|
| 62 |
| vulnerability |
VCID-vpkr-9akj-hbf6 |
|
| 63 |
| vulnerability |
VCID-w472-84ep-fkdx |
|
| 64 |
| vulnerability |
VCID-w8ff-vxga-8qcz |
|
| 65 |
| vulnerability |
VCID-wmam-qmmg-6uay |
|
| 66 |
| vulnerability |
VCID-xgj8-zrta-kub9 |
|
| 67 |
| vulnerability |
VCID-y41p-tgpa-m7cs |
|
| 68 |
| vulnerability |
VCID-y44u-23he-aya8 |
|
| 69 |
| vulnerability |
VCID-yjtj-ydsg-u7ca |
|
| 70 |
| vulnerability |
VCID-z8ex-47nd-47cm |
|
| 71 |
| vulnerability |
VCID-zg98-v6dj-s7gv |
|
| 72 |
| vulnerability |
VCID-zqyj-7rr3-fqew |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0 |
|
|
| aliases |
CVE-2016-8621
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zv25-wupq-bqfk |
|