Package Instance

reference_id

AVG-112

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-113

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-114

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-115

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-116

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-117

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2016-9586

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:haxx:curl::::::::
reference_id	cpe:2.3:a:haxx:curl::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:haxx:curl::::::::

reference_url

reference_id

CVE-2016-9586

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2016-9586

reference_url

reference_id

GLSA-201701-47

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9594.json

reference_url	https://usn.ubuntu.com/3441-1/
reference_id	USN-3441-1
reference_type
scores
url	https://usn.ubuntu.com/3441-1/

reference_url	https://usn.ubuntu.com/3441-2/
reference_id	USN-3441-2
reference_type
scores
url	https://usn.ubuntu.com/3441-2/

fixed_packages

url pkg:alpm/archlinux/libcurl-gnutls@7.52.1-1

purl pkg:alpm/archlinux/libcurl-gnutls@7.52.1-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-36n6-qanf-nue8

vulnerability	VCID-q3hu-8uy5-e3a4

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/libcurl-gnutls@7.52.1-1

aliases CVE-2016-9586

risk_score 3.6

exploitability 0.5

weighted_severity 7.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fnj3-2du1-4bhx

url VCID-hyqp-z8hb-fqbt

vulnerability_id VCID-hyqp-z8hb-fqbt

summary

Multiple vulnerabilities have been found in cURL, the worst of
    which could allow remote attackers to execute arbitrary code.

references

reference_url

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9594.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-9594

reference_id

reference_type

scores

value	0.01088
scoring_system	epss
scoring_elements	0.77857
published_at	2026-04-01T12:55:00Z

value	0.01088
scoring_system	epss
scoring_elements	0.77953
published_at	2026-04-18T12:55:00Z

value	0.01088
scoring_system	epss
scoring_elements	0.77864
published_at	2026-04-02T12:55:00Z

value	0.01088
scoring_system	epss
scoring_elements	0.77892
published_at	2026-04-04T12:55:00Z

value	0.01088
scoring_system	epss
scoring_elements	0.77874
published_at	2026-04-07T12:55:00Z

value	0.01088
scoring_system	epss
scoring_elements	0.77901
published_at	2026-04-08T12:55:00Z

value	0.01088
scoring_system	epss
scoring_elements	0.77906
published_at	2026-04-09T12:55:00Z

value	0.01088
scoring_system	epss
scoring_elements	0.77933
published_at	2026-04-11T12:55:00Z

value	0.01088
scoring_system	epss
scoring_elements	0.77917
published_at	2026-04-12T12:55:00Z

value	0.01088
scoring_system	epss
scoring_elements	0.77916
published_at	2026-04-13T12:55:00Z

value	0.01088
scoring_system	epss
scoring_elements	0.77954
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-9594

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-9594

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:12Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-9594

reference_url

https://curl.haxx.se/docs/adv_20161223.html

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:12Z/

url

https://curl.haxx.se/docs/adv_20161223.html

reference_url

https://curl.se/docs/CVE-2016-9594.html

reference_id

reference_type

scores

value	High
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-9594.html

reference_url

https://www.tenable.com/security/tns-2017-04

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:12Z/

url

https://www.tenable.com/security/tns-2017-04

reference_url

http://www.securityfocus.com/bid/95094

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:12Z/

url

http://www.securityfocus.com/bid/95094

reference_url

http://www.securitytracker.com/id/1037528

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:12Z/

url

http://www.securitytracker.com/id/1037528

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1408385
reference_id	1408385
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1408385

reference_url	https://security.archlinux.org/ASA-201612-22
reference_id	ASA-201612-22
reference_type
scores
url	https://security.archlinux.org/ASA-201612-22

reference_url	https://security.archlinux.org/ASA-201701-10
reference_id	ASA-201701-10
reference_type
scores
url	https://security.archlinux.org/ASA-201701-10

reference_url	https://security.archlinux.org/ASA-201701-11
reference_id	ASA-201701-11
reference_type
scores
url	https://security.archlinux.org/ASA-201701-11

reference_url	https://security.archlinux.org/ASA-201701-7
reference_id	ASA-201701-7
reference_type
scores
url	https://security.archlinux.org/ASA-201701-7

reference_url	https://security.archlinux.org/ASA-201701-8
reference_id	ASA-201701-8
reference_type
scores
url	https://security.archlinux.org/ASA-201701-8

reference_url	https://security.archlinux.org/ASA-201701-9
reference_id	ASA-201701-9
reference_type
scores
url	https://security.archlinux.org/ASA-201701-9

reference_url

reference_id

AVG-112

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-113

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-114

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-115

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-116

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-117

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2016-9594

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:haxx:curl::::::::
reference_id	cpe:2.3:a:haxx:curl::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:haxx:curl::::::::

reference_url

reference_id

CVE-2016-9594

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2016-9594

reference_url

reference_id

GLSA-201701-47

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:12Z/

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8622.json

fixed_packages

url pkg:alpm/archlinux/libcurl-gnutls@7.52.1-1

purl pkg:alpm/archlinux/libcurl-gnutls@7.52.1-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-36n6-qanf-nue8

vulnerability	VCID-q3hu-8uy5-e3a4

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/libcurl-gnutls@7.52.1-1

aliases CVE-2016-9594

risk_score 3.6

exploitability 0.5

weighted_severity 7.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hyqp-z8hb-fqbt

Fixing_vulnerabilities

url VCID-5jan-pqf6-fyhr

vulnerability_id VCID-5jan-pqf6-fyhr

summary

Multiple vulnerabilities have been found in cURL, the worst of
    which could allow remote attackers to execute arbitrary code.

references

reference_url

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8622.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-8622

reference_id

reference_type

scores

value	0.01634
scoring_system	epss
scoring_elements	0.81845
published_at	2026-04-01T12:55:00Z

value	0.01634
scoring_system	epss
scoring_elements	0.81915
published_at	2026-04-12T12:55:00Z

value	0.01634
scoring_system	epss
scoring_elements	0.81911
published_at	2026-04-13T12:55:00Z

value	0.01634
scoring_system	epss
scoring_elements	0.81947
published_at	2026-04-18T12:55:00Z

value	0.01634
scoring_system	epss
scoring_elements	0.81856
published_at	2026-04-02T12:55:00Z

value	0.01634
scoring_system	epss
scoring_elements	0.81879
published_at	2026-04-04T12:55:00Z

value	0.01634
scoring_system	epss
scoring_elements	0.81875
published_at	2026-04-07T12:55:00Z

value	0.01634
scoring_system	epss
scoring_elements	0.81901
published_at	2026-04-08T12:55:00Z

value	0.01634
scoring_system	epss
scoring_elements	0.81908
published_at	2026-04-09T12:55:00Z

value	0.01634
scoring_system	epss
scoring_elements	0.81927
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-8622

reference_url

https://curl.se/docs/CVE-2016-8622.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-8622.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

1037192

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T20:54:47Z/

url

http://www.securityfocus.com/bid/94105

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1388386
reference_id	1388386
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1388386

reference_url

reference_id

94105

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T20:54:47Z/

url

http://www.securityfocus.com/bid/94105

reference_url

https://curl.haxx.se/docs/adv_20161102H.html

reference_id

adv_20161102H.html

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T20:54:47Z/

url

https://curl.haxx.se/docs/adv_20161102H.html

reference_url	https://security.archlinux.org/ASA-201611-7
reference_id	ASA-201611-7
reference_type
scores
url	https://security.archlinux.org/ASA-201611-7

reference_url	https://security.archlinux.org/ASA-201611-8
reference_id	ASA-201611-8
reference_type
scores
url	https://security.archlinux.org/ASA-201611-8

reference_url	https://security.archlinux.org/ASA-201611-9
reference_id	ASA-201611-9
reference_type
scores
url	https://security.archlinux.org/ASA-201611-9

reference_url

reference_id

AVG-60

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-62

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-65

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

GLSA-201701-47

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T20:54:47Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8622

reference_url

reference_id

show_bug.cgi?id=CVE-2016-8622

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T20:54:47Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8622

reference_url	https://usn.ubuntu.com/3123-1/
reference_id	USN-3123-1
reference_type
scores
url	https://usn.ubuntu.com/3123-1/

fixed_packages

url pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

purl pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fnj3-2du1-4bhx

vulnerability	VCID-hyqp-z8hb-fqbt

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

aliases CVE-2016-8622

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5jan-pqf6-fyhr

url VCID-6muy-xpdq-9kg8

vulnerability_id VCID-6muy-xpdq-9kg8

summary

Multiple vulnerabilities have been found in cURL, the worst of
    which could allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8616.json

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8616.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-8616

reference_id

reference_type

scores

value	0.0413
scoring_system	epss
scoring_elements	0.88589
published_at	2026-04-01T12:55:00Z

value	0.0413
scoring_system	epss
scoring_elements	0.88655
published_at	2026-04-18T12:55:00Z

value	0.0413
scoring_system	epss
scoring_elements	0.88598
published_at	2026-04-02T12:55:00Z

value	0.0413
scoring_system	epss
scoring_elements	0.88616
published_at	2026-04-04T12:55:00Z

value	0.0413
scoring_system	epss
scoring_elements	0.88617
published_at	2026-04-07T12:55:00Z

value	0.0413
scoring_system	epss
scoring_elements	0.88635
published_at	2026-04-08T12:55:00Z

value	0.0413
scoring_system	epss
scoring_elements	0.8864
published_at	2026-04-09T12:55:00Z

value	0.0413
scoring_system	epss
scoring_elements	0.88652
published_at	2026-04-11T12:55:00Z

value	0.0413
scoring_system	epss
scoring_elements	0.88645
published_at	2026-04-13T12:55:00Z

value	0.0413
scoring_system	epss
scoring_elements	0.88658
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-8616

reference_url

https://curl.se/docs/CVE-2016-8616.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-8616.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	1.9
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:N/C:P/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1388371
reference_id	1388371
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1388371

reference_url	https://security.archlinux.org/ASA-201611-10
reference_id	ASA-201611-10
reference_type
scores
url	https://security.archlinux.org/ASA-201611-10

reference_url	https://security.archlinux.org/ASA-201611-4
reference_id	ASA-201611-4
reference_type
scores
url	https://security.archlinux.org/ASA-201611-4

reference_url	https://security.archlinux.org/ASA-201611-5
reference_id	ASA-201611-5
reference_type
scores
url	https://security.archlinux.org/ASA-201611-5

reference_url	https://security.archlinux.org/ASA-201611-7
reference_id	ASA-201611-7
reference_type
scores
url	https://security.archlinux.org/ASA-201611-7

reference_url	https://security.archlinux.org/ASA-201611-8
reference_id	ASA-201611-8
reference_type
scores
url	https://security.archlinux.org/ASA-201611-8

reference_url	https://security.archlinux.org/ASA-201611-9
reference_id	ASA-201611-9
reference_type
scores
url	https://security.archlinux.org/ASA-201611-9

reference_url

reference_id

AVG-60

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-61

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-62

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-63

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-65

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-66

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8623.json

reference_url	https://security.gentoo.org/glsa/201701-47
reference_id	GLSA-201701-47
reference_type
scores
url	https://security.gentoo.org/glsa/201701-47

reference_url	https://usn.ubuntu.com/3123-1/
reference_id	USN-3123-1
reference_type
scores
url	https://usn.ubuntu.com/3123-1/

fixed_packages

url pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

purl pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fnj3-2du1-4bhx

vulnerability	VCID-hyqp-z8hb-fqbt

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

aliases CVE-2016-8616

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6muy-xpdq-9kg8

url VCID-c6dk-7gj6-7far

vulnerability_id VCID-c6dk-7gj6-7far

summary

Multiple vulnerabilities have been found in cURL, the worst of
    which could allow remote attackers to execute arbitrary code.

references

reference_url

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8623.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-8623

reference_id

reference_type

scores

value	0.00837
scoring_system	epss
scoring_elements	0.74621
published_at	2026-04-07T12:55:00Z

value	0.00837
scoring_system	epss
scoring_elements	0.74617
published_at	2026-04-01T12:55:00Z

value	0.00837
scoring_system	epss
scoring_elements	0.74647
published_at	2026-04-04T12:55:00Z

value	0.00837
scoring_system	epss
scoring_elements	0.74653
published_at	2026-04-08T12:55:00Z

value	0.00837
scoring_system	epss
scoring_elements	0.74667
published_at	2026-04-09T12:55:00Z

value	0.00837
scoring_system	epss
scoring_elements	0.7469
published_at	2026-04-11T12:55:00Z

value	0.00837
scoring_system	epss
scoring_elements	0.7467
published_at	2026-04-12T12:55:00Z

value	0.00837
scoring_system	epss
scoring_elements	0.74662
published_at	2026-04-13T12:55:00Z

value	0.00837
scoring_system	epss
scoring_elements	0.74699
published_at	2026-04-16T12:55:00Z

value	0.00837
scoring_system	epss
scoring_elements	0.74707
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-8623

reference_url

https://curl.se/docs/CVE-2016-8623.html

reference_id

reference_type

scores

value	High
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-8623.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	2.6
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:P/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

1037192

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/

url

http://www.securityfocus.com/bid/94106

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1388388
reference_id	1388388
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1388388

reference_url

reference_id

94106

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/

url

http://www.securityfocus.com/bid/94106

reference_url

https://curl.haxx.se/docs/adv_20161102I.html

reference_id

adv_20161102I.html

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/

url

https://curl.haxx.se/docs/adv_20161102I.html

reference_url	https://security.archlinux.org/ASA-201611-10
reference_id	ASA-201611-10
reference_type
scores
url	https://security.archlinux.org/ASA-201611-10

reference_url	https://security.archlinux.org/ASA-201611-4
reference_id	ASA-201611-4
reference_type
scores
url	https://security.archlinux.org/ASA-201611-4

reference_url	https://security.archlinux.org/ASA-201611-5
reference_id	ASA-201611-5
reference_type
scores
url	https://security.archlinux.org/ASA-201611-5

reference_url	https://security.archlinux.org/ASA-201611-7
reference_id	ASA-201611-7
reference_type
scores
url	https://security.archlinux.org/ASA-201611-7

reference_url	https://security.archlinux.org/ASA-201611-8
reference_id	ASA-201611-8
reference_type
scores
url	https://security.archlinux.org/ASA-201611-8

reference_url	https://security.archlinux.org/ASA-201611-9
reference_id	ASA-201611-9
reference_type
scores
url	https://security.archlinux.org/ASA-201611-9

reference_url

reference_id

AVG-60

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-61

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-62

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-63

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-65

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-66

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://curl.haxx.se/CVE-2016-8623.patch

reference_url

reference_id

CVE-2016-8623.patch

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/

url

https://curl.haxx.se/CVE-2016-8623.patch

reference_url

reference_id

GLSA-201701-47

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8623

reference_url

reference_id

show_bug.cgi?id=CVE-2016-8623

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8623

reference_url	https://usn.ubuntu.com/3123-1/
reference_id	USN-3123-1
reference_type
scores
url	https://usn.ubuntu.com/3123-1/

fixed_packages

url pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

purl pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fnj3-2du1-4bhx

vulnerability	VCID-hyqp-z8hb-fqbt

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

aliases CVE-2016-8623

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c6dk-7gj6-7far

url VCID-e58m-g37d-9fd6

vulnerability_id VCID-e58m-g37d-9fd6

summary

Multiple vulnerabilities have been found in cURL, the worst of
    which could allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8624.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8624.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-8624

reference_id

reference_type

scores

value	0.01346
scoring_system	epss
scoring_elements	0.8003
published_at	2026-04-02T12:55:00Z

value	0.01346
scoring_system	epss
scoring_elements	0.80052
published_at	2026-04-04T12:55:00Z

value	0.01346
scoring_system	epss
scoring_elements	0.80042
published_at	2026-04-07T12:55:00Z

value	0.01346
scoring_system	epss
scoring_elements	0.80069
published_at	2026-04-08T12:55:00Z

value	0.01346
scoring_system	epss
scoring_elements	0.80098
published_at	2026-04-11T12:55:00Z

value	0.01346
scoring_system	epss
scoring_elements	0.80078
published_at	2026-04-09T12:55:00Z

value	0.01346
scoring_system	epss
scoring_elements	0.80023
published_at	2026-04-01T12:55:00Z

value	0.01346
scoring_system	epss
scoring_elements	0.80102
published_at	2026-04-18T12:55:00Z

value	0.01346
scoring_system	epss
scoring_elements	0.80073
published_at	2026-04-13T12:55:00Z

value	0.01346
scoring_system	epss
scoring_elements	0.80082
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-8624

reference_url

https://curl.se/docs/CVE-2016-8624.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-8624.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

1037192

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/

url

http://www.securityfocus.com/bid/94103

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1388390
reference_id	1388390
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1388390

reference_url

reference_id

94103

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/

url

http://www.securityfocus.com/bid/94103

reference_url

https://curl.haxx.se/docs/adv_20161102J.html

reference_id

adv_20161102J.html

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/

url

https://curl.haxx.se/docs/adv_20161102J.html

reference_url	https://security.archlinux.org/ASA-201611-10
reference_id	ASA-201611-10
reference_type
scores
url	https://security.archlinux.org/ASA-201611-10

reference_url	https://security.archlinux.org/ASA-201611-4
reference_id	ASA-201611-4
reference_type
scores
url	https://security.archlinux.org/ASA-201611-4

reference_url	https://security.archlinux.org/ASA-201611-5
reference_id	ASA-201611-5
reference_type
scores
url	https://security.archlinux.org/ASA-201611-5

reference_url	https://security.archlinux.org/ASA-201611-7
reference_id	ASA-201611-7
reference_type
scores
url	https://security.archlinux.org/ASA-201611-7

reference_url	https://security.archlinux.org/ASA-201611-8
reference_id	ASA-201611-8
reference_type
scores
url	https://security.archlinux.org/ASA-201611-8

reference_url	https://security.archlinux.org/ASA-201611-9
reference_id	ASA-201611-9
reference_type
scores
url	https://security.archlinux.org/ASA-201611-9

reference_url

reference_id

AVG-60

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-61

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-62

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-63

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-65

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-66

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

GLSA-201701-47

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/

url

https://lists.apache.org/thread.html/rfaa4d578587f52a9c4d176af516a681a712c664e3be440a4163691d5%40%3Ccommits.pulsar.apache.org%3E

reference_url

reference_id

rfaa4d578587f52a9c4d176af516a681a712c664e3be440a4163691d5%40%3Ccommits.pulsar.apache.org%3E

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/

url

https://lists.apache.org/thread.html/rfaa4d578587f52a9c4d176af516a681a712c664e3be440a4163691d5%40%3Ccommits.pulsar.apache.org%3E

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8624

reference_id

show_bug.cgi?id=CVE-2016-8624

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8624

reference_url	https://usn.ubuntu.com/3123-1/
reference_id	USN-3123-1
reference_type
scores
url	https://usn.ubuntu.com/3123-1/

fixed_packages

url pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

purl pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fnj3-2du1-4bhx

vulnerability	VCID-hyqp-z8hb-fqbt

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

aliases CVE-2016-8624

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-e58m-g37d-9fd6

url VCID-jqqf-gmd3-ubcd

vulnerability_id VCID-jqqf-gmd3-ubcd

summary

Multiple vulnerabilities have been found in cURL, the worst of
    which could allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8621.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8621.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-8621

reference_id

reference_type

scores

value	0.0226
scoring_system	epss
scoring_elements	0.84627
published_at	2026-04-11T12:55:00Z

value	0.0226
scoring_system	epss
scoring_elements	0.84539
published_at	2026-04-01T12:55:00Z

value	0.0226
scoring_system	epss
scoring_elements	0.84639
published_at	2026-04-18T12:55:00Z

value	0.0226
scoring_system	epss
scoring_elements	0.84622
published_at	2026-04-12T12:55:00Z

value	0.0226
scoring_system	epss
scoring_elements	0.84638
published_at	2026-04-16T12:55:00Z

value	0.0226
scoring_system	epss
scoring_elements	0.84617
published_at	2026-04-13T12:55:00Z

value	0.0226
scoring_system	epss
scoring_elements	0.84555
published_at	2026-04-02T12:55:00Z

value	0.0226
scoring_system	epss
scoring_elements	0.84576
published_at	2026-04-04T12:55:00Z

value	0.0226
scoring_system	epss
scoring_elements	0.8458
published_at	2026-04-07T12:55:00Z

value	0.0226
scoring_system	epss
scoring_elements	0.84601
published_at	2026-04-08T12:55:00Z

value	0.0226
scoring_system	epss
scoring_elements	0.84608
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-8621

reference_url

https://curl.se/docs/CVE-2016-8621.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-8621.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

1037192

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/

url

http://www.securityfocus.com/bid/94101

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1388385
reference_id	1388385
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1388385

reference_url

reference_id

94101

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/

url

http://www.securityfocus.com/bid/94101

reference_url

https://curl.haxx.se/docs/adv_20161102G.html

reference_id

adv_20161102G.html

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/

url

https://curl.haxx.se/docs/adv_20161102G.html

reference_url	https://security.archlinux.org/ASA-201611-10
reference_id	ASA-201611-10
reference_type
scores
url	https://security.archlinux.org/ASA-201611-10

reference_url	https://security.archlinux.org/ASA-201611-4
reference_id	ASA-201611-4
reference_type
scores
url	https://security.archlinux.org/ASA-201611-4

reference_url	https://security.archlinux.org/ASA-201611-5
reference_id	ASA-201611-5
reference_type
scores
url	https://security.archlinux.org/ASA-201611-5

reference_url	https://security.archlinux.org/ASA-201611-7
reference_id	ASA-201611-7
reference_type
scores
url	https://security.archlinux.org/ASA-201611-7

reference_url	https://security.archlinux.org/ASA-201611-8
reference_id	ASA-201611-8
reference_type
scores
url	https://security.archlinux.org/ASA-201611-8

reference_url	https://security.archlinux.org/ASA-201611-9
reference_id	ASA-201611-9
reference_type
scores
url	https://security.archlinux.org/ASA-201611-9

reference_url

reference_id

AVG-60

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-61

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-62

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-63

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-65

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-66

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://curl.haxx.se/CVE-2016-8621.patch

reference_url

reference_id

CVE-2016-8621.patch

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/

url

https://curl.haxx.se/CVE-2016-8621.patch

reference_url

reference_id

GLSA-201701-47

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8621

reference_url

reference_id

show_bug.cgi?id=CVE-2016-8621

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8621

reference_url	https://usn.ubuntu.com/3123-1/
reference_id	USN-3123-1
reference_type
scores
url	https://usn.ubuntu.com/3123-1/

fixed_packages

url pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

purl pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fnj3-2du1-4bhx

vulnerability	VCID-hyqp-z8hb-fqbt

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

aliases CVE-2016-8621

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jqqf-gmd3-ubcd

url VCID-jtw4-af4y-nkbk

vulnerability_id VCID-jtw4-af4y-nkbk

summary

Multiple vulnerabilities have been found in cURL, the worst of
    which could allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8619.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8619.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-8619

reference_id

reference_type

scores

value	0.02935
scoring_system	epss
scoring_elements	0.86359
published_at	2026-04-01T12:55:00Z

value	0.02935
scoring_system	epss
scoring_elements	0.86446
published_at	2026-04-18T12:55:00Z

value	0.02935
scoring_system	epss
scoring_elements	0.86387
published_at	2026-04-04T12:55:00Z

value	0.02935
scoring_system	epss
scoring_elements	0.86389
published_at	2026-04-07T12:55:00Z

value	0.02935
scoring_system	epss
scoring_elements	0.86408
published_at	2026-04-08T12:55:00Z

value	0.02935
scoring_system	epss
scoring_elements	0.86418
published_at	2026-04-09T12:55:00Z

value	0.02935
scoring_system	epss
scoring_elements	0.86432
published_at	2026-04-11T12:55:00Z

value	0.02935
scoring_system	epss
scoring_elements	0.8643
published_at	2026-04-12T12:55:00Z

value	0.02935
scoring_system	epss
scoring_elements	0.86425
published_at	2026-04-13T12:55:00Z

value	0.02935
scoring_system	epss
scoring_elements	0.86441
published_at	2026-04-16T12:55:00Z

value	0.02935
scoring_system	epss
scoring_elements	0.8637
published_at	2026-04-02T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-8619

reference_url

https://curl.se/docs/CVE-2016-8619.html

reference_id

reference_type

scores

value	High
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-8619.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1388379
reference_id	1388379
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1388379

reference_url	https://security.archlinux.org/ASA-201611-10
reference_id	ASA-201611-10
reference_type
scores
url	https://security.archlinux.org/ASA-201611-10

reference_url	https://security.archlinux.org/ASA-201611-4
reference_id	ASA-201611-4
reference_type
scores
url	https://security.archlinux.org/ASA-201611-4

reference_url	https://security.archlinux.org/ASA-201611-5
reference_id	ASA-201611-5
reference_type
scores
url	https://security.archlinux.org/ASA-201611-5

reference_url	https://security.archlinux.org/ASA-201611-7
reference_id	ASA-201611-7
reference_type
scores
url	https://security.archlinux.org/ASA-201611-7

reference_url	https://security.archlinux.org/ASA-201611-8
reference_id	ASA-201611-8
reference_type
scores
url	https://security.archlinux.org/ASA-201611-8

reference_url	https://security.archlinux.org/ASA-201611-9
reference_id	ASA-201611-9
reference_type
scores
url	https://security.archlinux.org/ASA-201611-9

reference_url

reference_id

AVG-60

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-61

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-62

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-63

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-65

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-66

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8615.json

reference_url	https://security.gentoo.org/glsa/201701-47
reference_id	GLSA-201701-47
reference_type
scores
url	https://security.gentoo.org/glsa/201701-47

reference_url	https://usn.ubuntu.com/3123-1/
reference_id	USN-3123-1
reference_type
scores
url	https://usn.ubuntu.com/3123-1/

fixed_packages

url pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

purl pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fnj3-2du1-4bhx

vulnerability	VCID-hyqp-z8hb-fqbt

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

aliases CVE-2016-8619

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jtw4-af4y-nkbk

url VCID-vxpj-xygq-9be2

vulnerability_id VCID-vxpj-xygq-9be2

summary

Multiple vulnerabilities have been found in cURL, the worst of
    which could allow remote attackers to execute arbitrary code.

references

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8615.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-8615

reference_id

reference_type

scores

value	0.02337
scoring_system	epss
scoring_elements	0.84789
published_at	2026-04-02T12:55:00Z

value	0.02337
scoring_system	epss
scoring_elements	0.84774
published_at	2026-04-01T12:55:00Z

value	0.02337
scoring_system	epss
scoring_elements	0.84808
published_at	2026-04-04T12:55:00Z

value	0.02337
scoring_system	epss
scoring_elements	0.8481
published_at	2026-04-07T12:55:00Z

value	0.02337
scoring_system	epss
scoring_elements	0.84832
published_at	2026-04-08T12:55:00Z

value	0.02337
scoring_system	epss
scoring_elements	0.84839
published_at	2026-04-09T12:55:00Z

value	0.02337
scoring_system	epss
scoring_elements	0.84857
published_at	2026-04-11T12:55:00Z

value	0.02337
scoring_system	epss
scoring_elements	0.84854
published_at	2026-04-12T12:55:00Z

value	0.02337
scoring_system	epss
scoring_elements	0.84849
published_at	2026-04-13T12:55:00Z

value	0.02337
scoring_system	epss
scoring_elements	0.8487
published_at	2026-04-16T12:55:00Z

value	0.02337
scoring_system	epss
scoring_elements	0.84871
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-8615

reference_url

https://curl.se/docs/CVE-2016-8615.html

reference_id

reference_type

scores

value	High
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-8615.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

1037192

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/

url

http://www.securityfocus.com/bid/94096

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1388370
reference_id	1388370
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1388370

reference_url

reference_id

94096

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/

url

http://www.securityfocus.com/bid/94096

reference_url

https://curl.haxx.se/docs/adv_20161102A.html

reference_id

adv_20161102A.html

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/

url

https://curl.haxx.se/docs/adv_20161102A.html

reference_url	https://security.archlinux.org/ASA-201611-10
reference_id	ASA-201611-10
reference_type
scores
url	https://security.archlinux.org/ASA-201611-10

reference_url	https://security.archlinux.org/ASA-201611-4
reference_id	ASA-201611-4
reference_type
scores
url	https://security.archlinux.org/ASA-201611-4

reference_url	https://security.archlinux.org/ASA-201611-5
reference_id	ASA-201611-5
reference_type
scores
url	https://security.archlinux.org/ASA-201611-5

reference_url	https://security.archlinux.org/ASA-201611-7
reference_id	ASA-201611-7
reference_type
scores
url	https://security.archlinux.org/ASA-201611-7

reference_url	https://security.archlinux.org/ASA-201611-8
reference_id	ASA-201611-8
reference_type
scores
url	https://security.archlinux.org/ASA-201611-8

reference_url	https://security.archlinux.org/ASA-201611-9
reference_id	ASA-201611-9
reference_type
scores
url	https://security.archlinux.org/ASA-201611-9

reference_url

reference_id

AVG-60

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-61

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-62

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-63

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-65

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-66

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://curl.haxx.se/CVE-2016-8615.patch

reference_url

reference_id

CVE-2016-8615.patch

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/

url

https://curl.haxx.se/CVE-2016-8615.patch

reference_url

reference_id

GLSA-201701-47

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8615

reference_url

reference_id

show_bug.cgi?id=CVE-2016-8615

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8615

reference_url	https://usn.ubuntu.com/3123-1/
reference_id	USN-3123-1
reference_type
scores
url	https://usn.ubuntu.com/3123-1/

fixed_packages

url pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

purl pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fnj3-2du1-4bhx

vulnerability	VCID-hyqp-z8hb-fqbt

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

aliases CVE-2016-8615

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vxpj-xygq-9be2

url VCID-yxks-8529-23bj

vulnerability_id VCID-yxks-8529-23bj

summary

Multiple vulnerabilities have been found in cURL, the worst of
    which could allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8625.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8625.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-8625

reference_id

reference_type

scores

value	0.01526
scoring_system	epss
scoring_elements	0.81219
published_at	2026-04-01T12:55:00Z

value	0.01526
scoring_system	epss
scoring_elements	0.81322
published_at	2026-04-18T12:55:00Z

value	0.01526
scoring_system	epss
scoring_elements	0.81228
published_at	2026-04-02T12:55:00Z

value	0.01526
scoring_system	epss
scoring_elements	0.81251
published_at	2026-04-04T12:55:00Z

value	0.01526
scoring_system	epss
scoring_elements	0.8125
published_at	2026-04-07T12:55:00Z

value	0.01526
scoring_system	epss
scoring_elements	0.81278
published_at	2026-04-08T12:55:00Z

value	0.01526
scoring_system	epss
scoring_elements	0.81283
published_at	2026-04-13T12:55:00Z

value	0.01526
scoring_system	epss
scoring_elements	0.81304
published_at	2026-04-11T12:55:00Z

value	0.01526
scoring_system	epss
scoring_elements	0.8129
published_at	2026-04-12T12:55:00Z

value	0.01526
scoring_system	epss
scoring_elements	0.8132
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-8625

reference_url

https://curl.se/docs/CVE-2016-8625.html

reference_id

reference_type

scores

value	High
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-8625.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8625
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8625

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:P/I:P/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1388392
reference_id	1388392
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1388392

reference_url	https://security.archlinux.org/ASA-201611-10
reference_id	ASA-201611-10
reference_type
scores
url	https://security.archlinux.org/ASA-201611-10

reference_url	https://security.archlinux.org/ASA-201611-4
reference_id	ASA-201611-4
reference_type
scores
url	https://security.archlinux.org/ASA-201611-4

reference_url	https://security.archlinux.org/ASA-201611-5
reference_id	ASA-201611-5
reference_type
scores
url	https://security.archlinux.org/ASA-201611-5

reference_url	https://security.archlinux.org/ASA-201611-7
reference_id	ASA-201611-7
reference_type
scores
url	https://security.archlinux.org/ASA-201611-7

reference_url	https://security.archlinux.org/ASA-201611-8
reference_id	ASA-201611-8
reference_type
scores
url	https://security.archlinux.org/ASA-201611-8

reference_url	https://security.archlinux.org/ASA-201611-9
reference_id	ASA-201611-9
reference_type
scores
url	https://security.archlinux.org/ASA-201611-9

reference_url

reference_id

AVG-60

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-61

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-62

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-63

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-65

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-66

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8617.json

reference_url	https://security.gentoo.org/glsa/201701-47
reference_id	GLSA-201701-47
reference_type
scores
url	https://security.gentoo.org/glsa/201701-47

fixed_packages

url pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

purl pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fnj3-2du1-4bhx

vulnerability	VCID-hyqp-z8hb-fqbt

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/libcurl-gnutls@7.51.0-1

aliases CVE-2016-8625

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yxks-8529-23bj

url VCID-zxz2-xfpd-pbay

vulnerability_id VCID-zxz2-xfpd-pbay

summary

Multiple vulnerabilities have been found in cURL, the worst of
    which could allow remote attackers to execute arbitrary code.

references

reference_url

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8617.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-8617

reference_id

reference_type

scores

value	0.00063
scoring_system	epss
scoring_elements	0.19714
published_at	2026-04-02T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19573
published_at	2026-04-01T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19763
published_at	2026-04-04T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19488
published_at	2026-04-07T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19567
published_at	2026-04-08T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19619
published_at	2026-04-09T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19623
published_at	2026-04-11T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19575
published_at	2026-04-12T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19517
published_at	2026-04-13T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19482
published_at	2026-04-16T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19491
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-8617

reference_url

https://curl.se/docs/CVE-2016-8617.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-8617.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv2
scoring_elements	AV:L/AC:H/Au:N/C:P/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

1037192

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/

url

http://www.securityfocus.com/bid/94097

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1388377
reference_id	1388377
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1388377

reference_url

reference_id

94097

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/

url

http://www.securityfocus.com/bid/94097

reference_url

https://curl.haxx.se/docs/adv_20161102C.html

reference_id

adv_20161102C.html

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/

url

https://curl.haxx.se/docs/adv_20161102C.html

reference_url	https://security.archlinux.org/ASA-201611-10
reference_id	ASA-201611-10
reference_type
scores
url	https://security.archlinux.org/ASA-201611-10

reference_url	https://security.archlinux.org/ASA-201611-4
reference_id	ASA-201611-4
reference_type
scores
url	https://security.archlinux.org/ASA-201611-4

reference_url	https://security.archlinux.org/ASA-201611-5
reference_id	ASA-201611-5
reference_type
scores
url	https://security.archlinux.org/ASA-201611-5

reference_url	https://security.archlinux.org/ASA-201611-7
reference_id	ASA-201611-7
reference_type
scores
url	https://security.archlinux.org/ASA-201611-7

reference_url	https://security.archlinux.org/ASA-201611-8
reference_id	ASA-201611-8
reference_type
scores
url	https://security.archlinux.org/ASA-201611-8

reference_url	https://security.archlinux.org/ASA-201611-9
reference_id	ASA-201611-9
reference_type
scores
url	https://security.archlinux.org/ASA-201611-9

reference_url

reference_id

AVG-60

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-61

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-62

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-63

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-65

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-66

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://curl.haxx.se/CVE-2016-8617.patch

reference_url

reference_id

CVE-2016-8617.patch

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/

url

https://curl.haxx.se/CVE-2016-8617.patch

reference_url

reference_id

GLSA-201701-47

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/

url