Package Instance

reference_id

1037192

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/

url

http://www.securityfocus.com/bid/94096

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1388370
reference_id	1388370
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1388370

reference_url

reference_id

94096

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/

url

http://www.securityfocus.com/bid/94096

reference_url

https://curl.haxx.se/docs/adv_20161102A.html

reference_id

adv_20161102A.html

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/

url

https://curl.haxx.se/docs/adv_20161102A.html

reference_url	https://security.archlinux.org/ASA-201611-10
reference_id	ASA-201611-10
reference_type
scores
url	https://security.archlinux.org/ASA-201611-10

reference_url	https://security.archlinux.org/ASA-201611-4
reference_id	ASA-201611-4
reference_type
scores
url	https://security.archlinux.org/ASA-201611-4

reference_url	https://security.archlinux.org/ASA-201611-5
reference_id	ASA-201611-5
reference_type
scores
url	https://security.archlinux.org/ASA-201611-5

reference_url	https://security.archlinux.org/ASA-201611-7
reference_id	ASA-201611-7
reference_type
scores
url	https://security.archlinux.org/ASA-201611-7

reference_url	https://security.archlinux.org/ASA-201611-8
reference_id	ASA-201611-8
reference_type
scores
url	https://security.archlinux.org/ASA-201611-8

reference_url	https://security.archlinux.org/ASA-201611-9
reference_id	ASA-201611-9
reference_type
scores
url	https://security.archlinux.org/ASA-201611-9

reference_url

reference_id

AVG-60

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-61

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-62

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-63

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-65

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-66

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://curl.haxx.se/CVE-2016-8615.patch

reference_url

reference_id

CVE-2016-8615.patch

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/

url

https://curl.haxx.se/CVE-2016-8615.patch

reference_url

reference_id

GLSA-201701-47

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/

url

https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E

reference_url

reference_id

r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/

url

https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E

reference_id

rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/

url

https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E

reference_url

reference_id

RHSA-2018:2486

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8615

reference_url

reference_id

show_bug.cgi?id=CVE-2016-8615

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8615

reference_url

reference_id

tns-2016-21

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/

url

https://api.first.org/data/v1/epss?cve=CVE-2005-0490

reference_url	https://usn.ubuntu.com/3123-1/
reference_id	USN-3123-1
reference_type
scores
url	https://usn.ubuntu.com/3123-1/

fixed_packages

url pkg:generic/curl.se/curl@7.51.0

purl pkg:generic/curl.se/curl@7.51.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-2x3m-p3eu-y7cn

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-fz2p-bn31-2yha

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0

aliases CVE-2016-8615

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-257w-bhnj-kugq

url VCID-2v93-gqe1-xqd8

vulnerability_id VCID-2v93-gqe1-xqd8

summary security flaw

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-0490.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-0490.json

reference_url

reference_id

reference_type

scores

value	0.02576
scoring_system	epss
scoring_elements	0.85804
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2005-0490

reference_url

https://curl.se/docs/CVE-2005-0490.html

reference_id

reference_type

scores

value	High
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2005-0490.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0490
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0490

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1617532
reference_id	1617532
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1617532

reference_url	https://access.redhat.com/errata/RHSA-2005:340
reference_id	RHSA-2005:340
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2005:340

reference_url	https://usn.ubuntu.com/86-1/
reference_id	USN-86-1
reference_type
scores
url	https://usn.ubuntu.com/86-1/

fixed_packages

url pkg:generic/curl.se/curl@7.13.1

purl pkg:generic/curl.se/curl@7.13.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-72pz-4qf7-xfdb

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-958x-aqdm-27br

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-a9jr-hx2n-87ch

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-b8jv-hnb7-eqfc

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-g3rz-vtae-h3cw

vulnerability	VCID-gme9-9d93-8bgk

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hg7c-ydk3-7ybq

vulnerability	VCID-jeet-9rt6-vygh

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-njfg-99cj-cfh4

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-p9gw-tfvj-xfb7

vulnerability	VCID-pgqj-25tn-akf3

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qc6p-1m1y-a3ar

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qrrf-z64u-zkck

vulnerability	VCID-qze3-vubf-67ej

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tvwg-295p-c3c6

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-vhq1-me6w-uqfm

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-x6jw-xxpk-eufb

vulnerability	VCID-x6pd-2arc-gqdq

vulnerability	VCID-xq5h-af6j-r3fa

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-y841-wa7x-gyd4

vulnerability	VCID-yn3p-7hnq-13hv

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-za4f-bm16-j7ba

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.13.1

aliases CVE-2005-0490

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2v93-gqe1-xqd8

url VCID-4563-62mm-57aq

vulnerability_id VCID-4563-62mm-57aq

summary curl: TELNET option IAC injection

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-27533.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-27533.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-27533

reference_id

reference_type

scores

value	0.00179
scoring_system	epss
scoring_elements	0.39186
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-27533

reference_url

https://curl.se/docs/CVE-2023-27533.html

reference_id

reference_type

scores

value	Low
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2023-27533.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27533
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27533

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://hackerone.com/reports/1891474

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T20:09:15Z/

url

https://hackerone.com/reports/1891474

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2179062
reference_id	2179062
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2179062

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/36NBD5YLJXXEDZLDGNFCERWRYJQ6LAQW/

reference_id

36NBD5YLJXXEDZLDGNFCERWRYJQ6LAQW

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T20:09:15Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/36NBD5YLJXXEDZLDGNFCERWRYJQ6LAQW/

reference_url

reference_id

GLSA-202310-12

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T20:09:15Z/

url

https://lists.debian.org/debian-lts-announce/2023/04/msg00025.html

reference_url

reference_id

msg00025.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T20:09:15Z/

url

https://lists.debian.org/debian-lts-announce/2023/04/msg00025.html

reference_url

https://security.netapp.com/advisory/ntap-20230420-0011/

reference_id

ntap-20230420-0011

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T20:09:15Z/

url

https://security.netapp.com/advisory/ntap-20230420-0011/

reference_url	https://access.redhat.com/errata/RHSA-2023:3354
reference_id	RHSA-2023:3354
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3354

reference_url	https://access.redhat.com/errata/RHSA-2023:3355
reference_id	RHSA-2023:3355
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3355

reference_url	https://access.redhat.com/errata/RHSA-2023:6679
reference_id	RHSA-2023:6679
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6679

reference_url	https://usn.ubuntu.com/5964-1/
reference_id	USN-5964-1
reference_type
scores
url	https://usn.ubuntu.com/5964-1/

reference_url	https://usn.ubuntu.com/5964-2/
reference_id	USN-5964-2
reference_type
scores
url	https://usn.ubuntu.com/5964-2/

fixed_packages

url pkg:generic/curl.se/curl@8.0.0

purl pkg:generic/curl.se/curl@8.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-32gj-mvnb-rudh

vulnerability	VCID-4pzm-87dd-xqbs

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-5jsn-ubxh-fqe4

vulnerability	VCID-5stq-jajr-57hv

vulnerability	VCID-689c-z62z-ukc7

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-ku14-1pmr-pbbd

vulnerability	VCID-nhst-thye-guh2

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qteb-88n4-5ka7

vulnerability	VCID-r1c8-6w99-kqgc

vulnerability	VCID-r4re-xx26-2kgm

vulnerability	VCID-sd8m-enmc-muhn

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-ujr4-yect-subh

vulnerability	VCID-x47y-r42c-bkfk

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.0.0

aliases CVE-2023-27533

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4563-62mm-57aq

url VCID-46wr-p8c4-x7he

vulnerability_id VCID-46wr-p8c4-x7he

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8618.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8618.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-8618

reference_id

reference_type

scores

value	0.01811
scoring_system	epss
scoring_elements	0.83146
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-8618

reference_url

https://curl.se/docs/CVE-2016-8618.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-8618.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.1
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:P/I:P/A:P

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1388378
reference_id	1388378
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1388378

reference_url	https://security.archlinux.org/ASA-201611-10
reference_id	ASA-201611-10
reference_type
scores
url	https://security.archlinux.org/ASA-201611-10

reference_url	https://security.archlinux.org/ASA-201611-4
reference_id	ASA-201611-4
reference_type
scores
url	https://security.archlinux.org/ASA-201611-4

reference_url	https://security.archlinux.org/ASA-201611-5
reference_id	ASA-201611-5
reference_type
scores
url	https://security.archlinux.org/ASA-201611-5

reference_url

reference_id

AVG-61

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-63

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-66

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-32221.json

reference_url	https://security.gentoo.org/glsa/201701-47
reference_id	GLSA-201701-47
reference_type
scores
url	https://security.gentoo.org/glsa/201701-47

reference_url	https://access.redhat.com/errata/RHSA-2018:2486
reference_id	RHSA-2018:2486
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:2486

reference_url	https://usn.ubuntu.com/3123-1/
reference_id	USN-3123-1
reference_type
scores
url	https://usn.ubuntu.com/3123-1/

fixed_packages

url pkg:generic/curl.se/curl@7.51.0

purl pkg:generic/curl.se/curl@7.51.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-2x3m-p3eu-y7cn

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-fz2p-bn31-2yha

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0

aliases CVE-2016-8618

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-46wr-p8c4-x7he

url VCID-4nqj-8xk6-a7ha

vulnerability_id VCID-4nqj-8xk6-a7ha

summary curl: POST following PUT confusion

references

reference_url

reference_id

reference_type

scores

value	4.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-32221.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-32221

reference_id

reference_type

scores

value	0.01759
scoring_system	epss
scoring_elements	0.82916
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-32221

reference_url

https://curl.se/docs/CVE-2022-32221.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2022-32221.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32221
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32221

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-43552
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-43552

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://hackerone.com/reports/1704017

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/

url

https://hackerone.com/reports/1704017

reference_url

http://seclists.org/fulldisclosure/2023/Jan/19

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/

url

http://seclists.org/fulldisclosure/2023/Jan/19

reference_url

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/

url

http://www.openwall.com/lists/oss-security/2023/05/17/4

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2135411
reference_id	2135411
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2135411

reference_url

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/

url

http://www.openwall.com/lists/oss-security/2023/05/17/4

reference_url

https://www.debian.org/security/2023/dsa-5330

reference_id

dsa-5330

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/

url

https://www.debian.org/security/2023/dsa-5330

reference_url

reference_id

GLSA-202212-01

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/

url

reference_url

reference_id

HT213604

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/

url

https://support.apple.com/kb/HT213605

reference_url

reference_id

HT213605

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/

url

https://support.apple.com/kb/HT213605

reference_url

https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html

reference_id

msg00028.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/

url

https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html

reference_url

https://security.netapp.com/advisory/ntap-20230110-0006/

reference_id

ntap-20230110-0006

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/

url

https://security.netapp.com/advisory/ntap-20230110-0006/

reference_url

https://security.netapp.com/advisory/ntap-20230208-0002/

reference_id

ntap-20230208-0002

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/

url

https://security.netapp.com/advisory/ntap-20230208-0002/

reference_url	https://access.redhat.com/errata/RHSA-2022:8840
reference_id	RHSA-2022:8840
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8840

reference_url	https://access.redhat.com/errata/RHSA-2022:8841
reference_id	RHSA-2022:8841
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8841

reference_url	https://access.redhat.com/errata/RHSA-2023:0333
reference_id	RHSA-2023:0333
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0333

reference_url	https://access.redhat.com/errata/RHSA-2023:4139
reference_id	RHSA-2023:4139
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4139

reference_url	https://usn.ubuntu.com/5702-1/
reference_id	USN-5702-1
reference_type
scores
url	https://usn.ubuntu.com/5702-1/

reference_url	https://usn.ubuntu.com/5702-2/
reference_id	USN-5702-2
reference_type
scores
url	https://usn.ubuntu.com/5702-2/

reference_url	https://usn.ubuntu.com/5823-1/
reference_id	USN-5823-1
reference_type
scores
url	https://usn.ubuntu.com/5823-1/

fixed_packages

url pkg:generic/curl.se/curl@7.86.0

purl pkg:generic/curl.se/curl@7.86.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-32gj-mvnb-rudh

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4pzm-87dd-xqbs

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-5jsn-ubxh-fqe4

vulnerability	VCID-5stq-jajr-57hv

vulnerability	VCID-689c-z62z-ukc7

vulnerability	VCID-71rt-1h3a-jkcm

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-frj4-zf2v-87g2

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-ku14-1pmr-pbbd

vulnerability	VCID-nhst-thye-guh2

vulnerability	VCID-nmwe-9bw8-2ud1

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qteb-88n4-5ka7

vulnerability	VCID-r1c8-6w99-kqgc

vulnerability	VCID-r4re-xx26-2kgm

vulnerability	VCID-sd8m-enmc-muhn

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-ujr4-yect-subh

vulnerability	VCID-v13d-ffaa-hyd9

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.86.0

aliases CVE-2022-32221

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4nqj-8xk6-a7ha

url VCID-6jpy-xpur-abc7

vulnerability_id VCID-6jpy-xpur-abc7

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8621.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8621.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-8621

reference_id

reference_type

scores

value	0.03165
scoring_system	epss
scoring_elements	0.87146
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-8621

reference_url

https://curl.se/docs/CVE-2016-8621.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-8621.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

1037192

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/

url

http://www.securityfocus.com/bid/94101

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1388385
reference_id	1388385
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1388385

reference_url

reference_id

94101

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/

url

http://www.securityfocus.com/bid/94101

reference_url

https://curl.haxx.se/docs/adv_20161102G.html

reference_id

adv_20161102G.html

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/

url

https://curl.haxx.se/docs/adv_20161102G.html

reference_url	https://security.archlinux.org/ASA-201611-10
reference_id	ASA-201611-10
reference_type
scores
url	https://security.archlinux.org/ASA-201611-10

reference_url	https://security.archlinux.org/ASA-201611-4
reference_id	ASA-201611-4
reference_type
scores
url	https://security.archlinux.org/ASA-201611-4

reference_url	https://security.archlinux.org/ASA-201611-5
reference_id	ASA-201611-5
reference_type
scores
url	https://security.archlinux.org/ASA-201611-5

reference_url	https://security.archlinux.org/ASA-201611-7
reference_id	ASA-201611-7
reference_type
scores
url	https://security.archlinux.org/ASA-201611-7

reference_url	https://security.archlinux.org/ASA-201611-8
reference_id	ASA-201611-8
reference_type
scores
url	https://security.archlinux.org/ASA-201611-8

reference_url	https://security.archlinux.org/ASA-201611-9
reference_id	ASA-201611-9
reference_type
scores
url	https://security.archlinux.org/ASA-201611-9

reference_url

reference_id

AVG-60

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-61

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-62

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-63

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-65

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-66

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://curl.haxx.se/CVE-2016-8621.patch

reference_url

reference_id

CVE-2016-8621.patch

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/

url

https://curl.haxx.se/CVE-2016-8621.patch

reference_url

reference_id

GLSA-201701-47

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/

url

reference_url

reference_id

RHSA-2018:2486

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8621

reference_url

reference_id

show_bug.cgi?id=CVE-2016-8621

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8621

reference_url

reference_id

tns-2016-21

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8616.json

reference_url	https://usn.ubuntu.com/3123-1/
reference_id	USN-3123-1
reference_type
scores
url	https://usn.ubuntu.com/3123-1/

fixed_packages

url pkg:generic/curl.se/curl@7.51.0

purl pkg:generic/curl.se/curl@7.51.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-2x3m-p3eu-y7cn

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-fz2p-bn31-2yha

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0

aliases CVE-2016-8621

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6jpy-xpur-abc7

url VCID-6pbt-tvzv-nqc5

vulnerability_id VCID-6pbt-tvzv-nqc5

summary

references

reference_url

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8616.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-8616

reference_id

reference_type

scores

value	0.0419
scoring_system	epss
scoring_elements	0.889
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-8616

reference_url

https://curl.se/docs/CVE-2016-8616.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-8616.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	1.9
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:N/C:P/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1388371
reference_id	1388371
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1388371

reference_url	https://security.archlinux.org/ASA-201611-10
reference_id	ASA-201611-10
reference_type
scores
url	https://security.archlinux.org/ASA-201611-10

reference_url	https://security.archlinux.org/ASA-201611-4
reference_id	ASA-201611-4
reference_type
scores
url	https://security.archlinux.org/ASA-201611-4

reference_url	https://security.archlinux.org/ASA-201611-5
reference_id	ASA-201611-5
reference_type
scores
url	https://security.archlinux.org/ASA-201611-5

reference_url	https://security.archlinux.org/ASA-201611-7
reference_id	ASA-201611-7
reference_type
scores
url	https://security.archlinux.org/ASA-201611-7

reference_url	https://security.archlinux.org/ASA-201611-8
reference_id	ASA-201611-8
reference_type
scores
url	https://security.archlinux.org/ASA-201611-8

reference_url	https://security.archlinux.org/ASA-201611-9
reference_id	ASA-201611-9
reference_type
scores
url	https://security.archlinux.org/ASA-201611-9

reference_url

reference_id

AVG-60

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-61

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-62

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-63

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-65

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-66

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://api.first.org/data/v1/epss?cve=CVE-2016-4802

reference_url	https://security.gentoo.org/glsa/201701-47
reference_id	GLSA-201701-47
reference_type
scores
url	https://security.gentoo.org/glsa/201701-47

reference_url	https://access.redhat.com/errata/RHSA-2018:2486
reference_id	RHSA-2018:2486
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:2486

reference_url	https://usn.ubuntu.com/3123-1/
reference_id	USN-3123-1
reference_type
scores
url	https://usn.ubuntu.com/3123-1/

fixed_packages

url pkg:generic/curl.se/curl@7.51.0

purl pkg:generic/curl.se/curl@7.51.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-2x3m-p3eu-y7cn

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-fz2p-bn31-2yha

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0

aliases CVE-2016-8616

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6pbt-tvzv-nqc5

url VCID-72pz-4qf7-xfdb

vulnerability_id VCID-72pz-4qf7-xfdb

summary Multiple untrusted search path vulnerabilities in cURL and libcurl before 7.49.1, when built with SSPI or telnet is enabled, allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) security.dll, (2) secur32.dll, or (3) ws2_32.dll in the application or current working directory.

references

reference_url

reference_id

reference_type

scores

value	0.00612
scoring_system	epss
scoring_elements	0.70137
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-4802

reference_url

https://curl.se/docs/CVE-2016-4802.html

reference_id

reference_type

scores

value	High
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-4802.html

fixed_packages

url pkg:generic/curl.se/curl@7.49.1

purl pkg:generic/curl.se/curl@7.49.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-2x3m-p3eu-y7cn

vulnerability	VCID-3m3q-mxu4-9uhh

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-8kzz-y6n1-97cv

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-fz2p-bn31-2yha

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qxf1-m33c-3kbq

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uq2h-5uqp-rfbg

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vhq1-me6w-uqfm

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-xq5h-af6j-r3fa

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.49.1

aliases CVE-2016-4802

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-72pz-4qf7-xfdb

url VCID-7wd8-zrdf-gkc6

vulnerability_id VCID-7wd8-zrdf-gkc6

summary curl: more POST-after-PUT confusion

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28322.json

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28322.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-28322

reference_id

reference_type

scores

value	0.00631
scoring_system	epss
scoring_elements	0.7063
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-28322

reference_url

https://curl.se/docs/CVE-2023-28322.html

reference_id

reference_type

scores

value	Low
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2023-28322.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28322
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28322

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://hackerone.com/reports/1954658

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/

url

https://hackerone.com/reports/1954658

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036239
reference_id	1036239
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036239

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2196793
reference_id	2196793
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2196793

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/

url

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/

url

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F4I75RDGX5ULSSCBE5BF3P5I5SFO7ULQ/

reference_url

reference_id

F4I75RDGX5ULSSCBE5BF3P5I5SFO7ULQ

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F4I75RDGX5ULSSCBE5BF3P5I5SFO7ULQ/

reference_url

reference_id

GLSA-202310-12

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/

url

reference_url

reference_id

HT213843

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/

url

reference_url

reference_id

HT213844

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/

url

reference_url

reference_id

HT213845

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/

url

https://lists.debian.org/debian-lts-announce/2023/12/msg00015.html

reference_url

reference_id

msg00015.html

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/

url

https://lists.debian.org/debian-lts-announce/2023/12/msg00015.html

reference_url

https://security.netapp.com/advisory/ntap-20230609-0009/

reference_id

ntap-20230609-0009

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/

url

https://security.netapp.com/advisory/ntap-20230609-0009/

reference_url	https://access.redhat.com/errata/RHSA-2023:4354
reference_id	RHSA-2023:4354
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4354

reference_url	https://access.redhat.com/errata/RHSA-2023:4628
reference_id	RHSA-2023:4628
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4628

reference_url	https://access.redhat.com/errata/RHSA-2023:4629
reference_id	RHSA-2023:4629
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4629

reference_url	https://access.redhat.com/errata/RHSA-2023:5598
reference_id	RHSA-2023:5598
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5598

reference_url	https://access.redhat.com/errata/RHSA-2024:0428
reference_id	RHSA-2024:0428
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0428

reference_url	https://access.redhat.com/errata/RHSA-2024:0585
reference_id	RHSA-2024:0585
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0585

reference_url	https://access.redhat.com/errata/RHSA-2024:1601
reference_id	RHSA-2024:1601
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1601

reference_url	https://access.redhat.com/errata/RHSA-2024:2092
reference_id	RHSA-2024:2092
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2092

reference_url	https://access.redhat.com/errata/RHSA-2024:2093
reference_id	RHSA-2024:2093
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2093

reference_url	https://usn.ubuntu.com/6237-1/
reference_id	USN-6237-1
reference_type
scores
url	https://usn.ubuntu.com/6237-1/

reference_url	https://usn.ubuntu.com/6237-3/
reference_id	USN-6237-3
reference_type
scores
url	https://usn.ubuntu.com/6237-3/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z2LIWHWKOVH24COGGBCVOWDXXIUPKOMK/

reference_id

Z2LIWHWKOVH24COGGBCVOWDXXIUPKOMK

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z2LIWHWKOVH24COGGBCVOWDXXIUPKOMK/

fixed_packages

url pkg:generic/curl.se/curl@8.1.0

purl pkg:generic/curl.se/curl@8.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-32gj-mvnb-rudh

vulnerability	VCID-4pzm-87dd-xqbs

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-5jsn-ubxh-fqe4

vulnerability	VCID-5stq-jajr-57hv

vulnerability	VCID-689c-z62z-ukc7

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-ku14-1pmr-pbbd

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qteb-88n4-5ka7

vulnerability	VCID-r1c8-6w99-kqgc

vulnerability	VCID-r4re-xx26-2kgm

vulnerability	VCID-sd8m-enmc-muhn

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-ujr4-yect-subh

vulnerability	VCID-x47y-r42c-bkfk

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.1.0

aliases CVE-2023-28322

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7wd8-zrdf-gkc6

url VCID-958x-aqdm-27br

vulnerability_id VCID-958x-aqdm-27br

summary cURL before 7.47.0 on Windows allows attackers to write to arbitrary files in the current working directory on a different drive via a colon in a remote file name.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-0754

reference_id

reference_type

scores

value	0.00351
scoring_system	epss
scoring_elements	0.57741
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-0754

reference_url

https://curl.se/docs/CVE-2016-0754.html

reference_id

reference_type

scores

value	High
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-0754.html

fixed_packages

url pkg:generic/curl.se/curl@7.47.0

purl pkg:generic/curl.se/curl@7.47.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-2x3m-p3eu-y7cn

vulnerability	VCID-3m3q-mxu4-9uhh

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-72pz-4qf7-xfdb

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-8kzz-y6n1-97cv

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-m3hp-gvpn-4kea

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qxf1-m33c-3kbq

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uq2h-5uqp-rfbg

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vhq1-me6w-uqfm

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-xq5h-af6j-r3fa

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.47.0

aliases CVE-2016-0754

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-958x-aqdm-27br

url VCID-97n5-5pa2-rqhz

vulnerability_id VCID-97n5-5pa2-rqhz

summary curl: cookie injection with none file

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38546.json

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38546.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-38546

reference_id

reference_type

scores

value	0.00441
scoring_system	epss
scoring_elements	0.63492
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-38546

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38545
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38545

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38546
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38546

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://hackerone.com/reports/2148242
reference_id
reference_type
scores
url	https://hackerone.com/reports/2148242

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2241938
reference_id	2241938
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2241938

reference_url

http://seclists.org/fulldisclosure/2024/Jan/34

reference_id

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/

url

http://seclists.org/fulldisclosure/2024/Jan/34

reference_url

http://seclists.org/fulldisclosure/2024/Jan/37

reference_id

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/

url

http://seclists.org/fulldisclosure/2024/Jan/37

reference_url

http://seclists.org/fulldisclosure/2024/Jan/38

reference_id

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/

url

http://seclists.org/fulldisclosure/2024/Jan/38

reference_url

https://security.archlinux.org/AVG-2845

reference_id

AVG-2845

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2845

reference_url

https://security.archlinux.org/AVG-2846

reference_id

AVG-2846

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2846

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2023-38546
reference_id	CVE-2023-38546
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2023-38546

reference_url

https://curl.se/docs/CVE-2023-38546.html

reference_id

CVE-2023-38546.HTML

reference_type

scores

value	Low
scoring_system	cvssv3.1
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/

url

https://curl.se/docs/CVE-2023-38546.html

reference_url	https://security.gentoo.org/glsa/202310-12
reference_id	GLSA-202310-12
reference_type
scores
url	https://security.gentoo.org/glsa/202310-12

reference_url

https://support.apple.com/kb/HT214036

reference_id

HT214036

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/

url

https://support.apple.com/kb/HT214036

reference_url

https://support.apple.com/kb/HT214057

reference_id

HT214057

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/

url

https://support.apple.com/kb/HT214057

reference_url

https://support.apple.com/kb/HT214058

reference_id

HT214058

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/

url

https://support.apple.com/kb/HT214058

reference_url

https://support.apple.com/kb/HT214063

reference_id

HT214063

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/

url

https://support.apple.com/kb/HT214063

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OGMXNRNSJ4ETDK6FRNU3J7SABXPWCHSQ/

reference_id

OGMXNRNSJ4ETDK6FRNU3J7SABXPWCHSQ

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OGMXNRNSJ4ETDK6FRNU3J7SABXPWCHSQ/

reference_url	https://access.redhat.com/errata/RHSA-2023:5700
reference_id	RHSA-2023:5700
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5700

reference_url	https://access.redhat.com/errata/RHSA-2023:5763
reference_id	RHSA-2023:5763
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5763

reference_url	https://access.redhat.com/errata/RHSA-2023:6292
reference_id	RHSA-2023:6292
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6292

reference_url	https://access.redhat.com/errata/RHSA-2023:6745
reference_id	RHSA-2023:6745
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6745

reference_url	https://access.redhat.com/errata/RHSA-2023:7540
reference_id	RHSA-2023:7540
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7540

reference_url	https://access.redhat.com/errata/RHSA-2023:7625
reference_id	RHSA-2023:7625
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7625

reference_url	https://access.redhat.com/errata/RHSA-2023:7626
reference_id	RHSA-2023:7626
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7626

reference_url	https://access.redhat.com/errata/RHSA-2024:1601
reference_id	RHSA-2024:1601
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1601

reference_url	https://access.redhat.com/errata/RHSA-2024:2092
reference_id	RHSA-2024:2092
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2092

reference_url	https://access.redhat.com/errata/RHSA-2024:2093
reference_id	RHSA-2024:2093
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2093

reference_url	https://access.redhat.com/errata/RHSA-2024:2101
reference_id	RHSA-2024:2101
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2101

reference_url	https://usn.ubuntu.com/6429-1/
reference_id	USN-6429-1
reference_type
scores
url	https://usn.ubuntu.com/6429-1/

reference_url	https://usn.ubuntu.com/6429-2/
reference_id	USN-6429-2
reference_type
scores
url	https://usn.ubuntu.com/6429-2/

reference_url	https://usn.ubuntu.com/6429-3/
reference_id	USN-6429-3
reference_type
scores
url	https://usn.ubuntu.com/6429-3/

reference_url

https://forum.vmssoftware.com/viewtopic.php?f=8&t=8868

reference_id

viewtopic.php?f=8&t=8868

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/

url

https://forum.vmssoftware.com/viewtopic.php?f=8&t=8868

fixed_packages

url pkg:generic/curl.se/curl@8.4.0

purl pkg:generic/curl.se/curl@8.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-32gj-mvnb-rudh

vulnerability	VCID-4pzm-87dd-xqbs

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-5jsn-ubxh-fqe4

vulnerability	VCID-689c-z62z-ukc7

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-ku14-1pmr-pbbd

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qteb-88n4-5ka7

vulnerability	VCID-r1c8-6w99-kqgc

vulnerability	VCID-r4re-xx26-2kgm

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-ujr4-yect-subh

vulnerability	VCID-x47y-r42c-bkfk

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.4.0

aliases CVE-2023-38546

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-97n5-5pa2-rqhz

url VCID-a9jr-hx2n-87ch

vulnerability_id VCID-a9jr-hx2n-87ch

summary curl: Loop counter error, leading to heap-based buffer overflow when decoding certain URLs

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2174.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2174.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-2174

reference_id

reference_type

scores

value	0.03181
scoring_system	epss
scoring_elements	0.8718
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-2174

reference_url

https://curl.se/docs/CVE-2013-2174.html

reference_id

reference_type

scores

value	High
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2013-2174.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2174
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2174

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=965640
reference_id	965640
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=965640

reference_url	https://security.gentoo.org/glsa/201401-14
reference_id	GLSA-201401-14
reference_type
scores
url	https://security.gentoo.org/glsa/201401-14

reference_url	https://access.redhat.com/errata/RHSA-2013:0983
reference_id	RHSA-2013:0983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0983

reference_url	https://usn.ubuntu.com/1894-1/
reference_id	USN-1894-1
reference_type
scores
url	https://usn.ubuntu.com/1894-1/

fixed_packages

url pkg:generic/curl.se/curl@7.31.0

purl pkg:generic/curl.se/curl@7.31.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-72pz-4qf7-xfdb

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8kzz-y6n1-97cv

vulnerability	VCID-958x-aqdm-27br

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9ck1-b1zb-euad

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-b8jv-hnb7-eqfc

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-dcuk-131b-pbgp

vulnerability	VCID-ddky-6vbe-nqc8

vulnerability	VCID-ddtt-b7y9-ubgn

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-gme9-9d93-8bgk

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hk4n-peps-yuck

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-m3hp-gvpn-4kea

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-njfg-99cj-cfh4

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-p9gw-tfvj-xfb7

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qc6p-1m1y-a3ar

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qrrf-z64u-zkck

vulnerability	VCID-qxf1-m33c-3kbq

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-snt9-bpy7-pqhd

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-t49y-2csd-q7c9

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v3w9-aq2q-6kdd

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vhq1-me6w-uqfm

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-xq5h-af6j-r3fa

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-y841-wa7x-gyd4

vulnerability	VCID-yn3p-7hnq-13hv

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-za4f-bm16-j7ba

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.31.0

aliases CVE-2013-2174

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-a9jr-hx2n-87ch

url VCID-ab48-azj9-p3hq

vulnerability_id VCID-ab48-azj9-p3hq

summary curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-1965.json

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-1965.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-1965

reference_id

reference_type

scores

value	0.00073
scoring_system	epss
scoring_elements	0.22163
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-1965

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1965
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1965

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2446448
reference_id	2446448
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2446448

reference_url

https://curl.se/docs/CVE-2026-1965.html

reference_id

CVE-2026-1965.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

value	Medium
scoring_system	cvssv3.1
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-11T14:31:56Z/

url

https://curl.se/docs/CVE-2026-1965.html

reference_url

https://curl.se/docs/CVE-2026-1965.json

reference_id

CVE-2026-1965.json

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-11T14:31:56Z/

url

https://curl.se/docs/CVE-2026-1965.json

reference_url	https://access.redhat.com/errata/RHSA-2026:6893
reference_id	RHSA-2026:6893
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6893

reference_url	https://usn.ubuntu.com/8084-1/
reference_id	USN-8084-1
reference_type
scores
url	https://usn.ubuntu.com/8084-1/

reference_url	https://usn.ubuntu.com/8099-1/
reference_id	USN-8099-1
reference_type
scores
url	https://usn.ubuntu.com/8099-1/

fixed_packages

url pkg:generic/curl.se/curl@8.19.0

purl pkg:generic/curl.se/curl@8.19.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-5q7e-maen-9kes

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-ku14-1pmr-pbbd

vulnerability	VCID-qax6-9qcb-6yah

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.19.0

aliases CVE-2026-1965

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ab48-azj9-p3hq

url VCID-b656-14j2-dbdn

vulnerability_id VCID-b656-14j2-dbdn

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8624.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8624.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-8624

reference_id

reference_type

scores

value	0.01363
scoring_system	epss
scoring_elements	0.80482
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-8624

reference_url

https://curl.se/docs/CVE-2016-8624.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-8624.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

1037192

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/

url

http://www.securityfocus.com/bid/94103

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1388390
reference_id	1388390
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1388390

reference_url

reference_id

94103

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/

url

http://www.securityfocus.com/bid/94103

reference_url

https://curl.haxx.se/docs/adv_20161102J.html

reference_id

adv_20161102J.html

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/

url

https://curl.haxx.se/docs/adv_20161102J.html

reference_url	https://security.archlinux.org/ASA-201611-10
reference_id	ASA-201611-10
reference_type
scores
url	https://security.archlinux.org/ASA-201611-10

reference_url	https://security.archlinux.org/ASA-201611-4
reference_id	ASA-201611-4
reference_type
scores
url	https://security.archlinux.org/ASA-201611-4

reference_url	https://security.archlinux.org/ASA-201611-5
reference_id	ASA-201611-5
reference_type
scores
url	https://security.archlinux.org/ASA-201611-5

reference_url	https://security.archlinux.org/ASA-201611-7
reference_id	ASA-201611-7
reference_type
scores
url	https://security.archlinux.org/ASA-201611-7

reference_url	https://security.archlinux.org/ASA-201611-8
reference_id	ASA-201611-8
reference_type
scores
url	https://security.archlinux.org/ASA-201611-8

reference_url	https://security.archlinux.org/ASA-201611-9
reference_id	ASA-201611-9
reference_type
scores
url	https://security.archlinux.org/ASA-201611-9

reference_url

reference_id

AVG-60

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-61

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-62

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-63

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-65

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-66

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

GLSA-201701-47

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/

url

https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E

reference_url

reference_id

r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/

url

https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E

reference_id

rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/

url

https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rfaa4d578587f52a9c4d176af516a681a712c664e3be440a4163691d5%40%3Ccommits.pulsar.apache.org%3E

reference_id

rfaa4d578587f52a9c4d176af516a681a712c664e3be440a4163691d5%40%3Ccommits.pulsar.apache.org%3E

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/

url

https://lists.apache.org/thread.html/rfaa4d578587f52a9c4d176af516a681a712c664e3be440a4163691d5%40%3Ccommits.pulsar.apache.org%3E

reference_url

reference_id

RHSA-2018:2486

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8624

reference_url

reference_id

show_bug.cgi?id=CVE-2016-8624

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8624

reference_url

reference_id

tns-2016-21

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/

url

https://api.first.org/data/v1/epss?cve=CVE-2014-3613

reference_url	https://usn.ubuntu.com/3123-1/
reference_id	USN-3123-1
reference_type
scores
url	https://usn.ubuntu.com/3123-1/

fixed_packages

url pkg:generic/curl.se/curl@7.51.0

purl pkg:generic/curl.se/curl@7.51.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-2x3m-p3eu-y7cn

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-fz2p-bn31-2yha

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0

aliases CVE-2016-8624

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b656-14j2-dbdn

url VCID-b8jv-hnb7-eqfc

vulnerability_id VCID-b8jv-hnb7-eqfc

summary curl: incorrect handling of IP addresses in cookie domain

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3613.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3613.json

reference_url

reference_id

reference_type

scores

value	0.0182
scoring_system	epss
scoring_elements	0.83179
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-3613

reference_url

https://curl.se/docs/CVE-2014-3613.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2014-3613.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3613
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3613

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1136154
reference_id	1136154
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1136154

reference_url	https://access.redhat.com/errata/RHSA-2015:1254
reference_id	RHSA-2015:1254
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1254

reference_url	https://access.redhat.com/errata/RHSA-2015:2159
reference_id	RHSA-2015:2159
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2159

reference_url	https://usn.ubuntu.com/2346-1/
reference_id	USN-2346-1
reference_type
scores
url	https://usn.ubuntu.com/2346-1/

fixed_packages

url pkg:generic/curl.se/curl@7.38.0

purl pkg:generic/curl.se/curl@7.38.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-3m3q-mxu4-9uhh

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-72pz-4qf7-xfdb

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8kzz-y6n1-97cv

vulnerability	VCID-958x-aqdm-27br

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-bzpr-8cw4-zkd6

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-dcuk-131b-pbgp

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-m3hp-gvpn-4kea

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-p9gw-tfvj-xfb7

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qc6p-1m1y-a3ar

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qrrf-z64u-zkck

vulnerability	VCID-qxf1-m33c-3kbq

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-snt9-bpy7-pqhd

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-t49y-2csd-q7c9

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uq2h-5uqp-rfbg

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vhq1-me6w-uqfm

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-xq5h-af6j-r3fa

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-yn3p-7hnq-13hv

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-za4f-bm16-j7ba

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.38.0

aliases CVE-2014-3613

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b8jv-hnb7-eqfc

url VCID-bu5q-p482-kbd2

vulnerability_id VCID-bu5q-p482-kbd2

summary curl: HTTP authentication leak in redirects

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1000007.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1000007.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-1000007

reference_id

reference_type

scores

value	0.03854
scoring_system	epss
scoring_elements	0.88402
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-1000007

reference_url

https://curl.se/docs/CVE-2018-1000007.html

reference_id

reference_type

scores

value	Low
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2018-1000007.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000007
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000007

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1537125
reference_id	1537125
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1537125

reference_url	https://security.archlinux.org/ASA-201801-20
reference_id	ASA-201801-20
reference_type
scores
url	https://security.archlinux.org/ASA-201801-20

reference_url	https://security.archlinux.org/ASA-201801-22
reference_id	ASA-201801-22
reference_type
scores
url	https://security.archlinux.org/ASA-201801-22

reference_url	https://security.archlinux.org/ASA-201801-23
reference_id	ASA-201801-23
reference_type
scores
url	https://security.archlinux.org/ASA-201801-23

reference_url	https://security.archlinux.org/ASA-201801-24
reference_id	ASA-201801-24
reference_type
scores
url	https://security.archlinux.org/ASA-201801-24

reference_url	https://security.archlinux.org/ASA-201801-25
reference_id	ASA-201801-25
reference_type
scores
url	https://security.archlinux.org/ASA-201801-25

reference_url	https://security.archlinux.org/ASA-201801-26
reference_id	ASA-201801-26
reference_type
scores
url	https://security.archlinux.org/ASA-201801-26

reference_url

https://security.archlinux.org/AVG-593

reference_id

AVG-593

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-593

reference_url

https://security.archlinux.org/AVG-594

reference_id

AVG-594

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-594

reference_url

https://security.archlinux.org/AVG-595

reference_id

AVG-595

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-595

reference_url

https://security.archlinux.org/AVG-596

reference_id

AVG-596

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-596

reference_url

https://security.archlinux.org/AVG-597

reference_id

AVG-597

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-597

reference_url

https://security.archlinux.org/AVG-598

reference_id

AVG-598

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-598

reference_url	https://security.gentoo.org/glsa/201804-04
reference_id	GLSA-201804-04
reference_type
scores
url	https://security.gentoo.org/glsa/201804-04

reference_url	https://usn.ubuntu.com/3554-1/
reference_id	USN-3554-1
reference_type
scores
url	https://usn.ubuntu.com/3554-1/

reference_url	https://usn.ubuntu.com/3554-2/
reference_id	USN-3554-2
reference_type
scores
url	https://usn.ubuntu.com/3554-2/

fixed_packages

url pkg:generic/curl.se/curl@7.58.0

purl pkg:generic/curl.se/curl@7.58.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2x3m-p3eu-y7cn

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-dmkg-yeua-uffn

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nqds-umrs-37dd

vulnerability	VCID-ntp8-1uak-t7gp

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qteb-88n4-5ka7

vulnerability	VCID-r4re-xx26-2kgm

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v13d-ffaa-hyd9

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y7c7-w2ru-gbhm

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.58.0

aliases CVE-2018-1000007

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bu5q-p482-kbd2

url VCID-c7r3-5s6m-5ua1

vulnerability_id VCID-c7r3-5s6m-5ua1

summary libcurl: Buffer Overflow in libcurl via zlib Integer Overflow

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0725.json

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0725.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-0725

reference_id

reference_type

scores

value	0.006
scoring_system	epss
scoring_elements	0.69765
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-0725

reference_url

https://curl.se/docs/CVE-2025-0725.html

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

value	Low
scoring_system	cvssv3.1
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-05T14:33:50Z/

url

https://curl.se/docs/CVE-2025-0725.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0725
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0725

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://hackerone.com/reports/2956023

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-05T14:33:50Z/

url

https://hackerone.com/reports/2956023

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2343899
reference_id	2343899
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2343899

reference_url

https://curl.se/docs/CVE-2025-0725.json

reference_id

CVE-2025-0725.json

reference_type

scores

value	7.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-05T14:33:50Z/

url

https://curl.se/docs/CVE-2025-0725.json

fixed_packages

url pkg:generic/curl.se/curl@8.12.0

purl pkg:generic/curl.se/curl@8.12.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-4pzm-87dd-xqbs

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-eu8a-mzse-zfhy

vulnerability	VCID-g6cd-5nuc-73bx

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-ku14-1pmr-pbbd

vulnerability	VCID-ncpq-4ws5-eyh2

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qteb-88n4-5ka7

vulnerability	VCID-r4re-xx26-2kgm

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-x47y-r42c-bkfk

vulnerability	VCID-zssk-1ump-a3hh

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.12.0

aliases CVE-2025-0725

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c7r3-5s6m-5ua1

url VCID-d1pj-eqmw-9ya1

vulnerability_id VCID-d1pj-eqmw-9ya1

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8619.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8619.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-8619

reference_id

reference_type

scores

value	0.03078
scoring_system	epss
scoring_elements	0.86989
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-8619

reference_url

https://curl.se/docs/CVE-2016-8619.html

reference_id

reference_type

scores

value	High
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-8619.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1388379
reference_id	1388379
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1388379

reference_url	https://security.archlinux.org/ASA-201611-10
reference_id	ASA-201611-10
reference_type
scores
url	https://security.archlinux.org/ASA-201611-10

reference_url	https://security.archlinux.org/ASA-201611-4
reference_id	ASA-201611-4
reference_type
scores
url	https://security.archlinux.org/ASA-201611-4

reference_url	https://security.archlinux.org/ASA-201611-5
reference_id	ASA-201611-5
reference_type
scores
url	https://security.archlinux.org/ASA-201611-5

reference_url	https://security.archlinux.org/ASA-201611-7
reference_id	ASA-201611-7
reference_type
scores
url	https://security.archlinux.org/ASA-201611-7

reference_url	https://security.archlinux.org/ASA-201611-8
reference_id	ASA-201611-8
reference_type
scores
url	https://security.archlinux.org/ASA-201611-8

reference_url	https://security.archlinux.org/ASA-201611-9
reference_id	ASA-201611-9
reference_type
scores
url	https://security.archlinux.org/ASA-201611-9

reference_url

reference_id

AVG-60

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-61

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-62

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-63

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-65

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-66

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8623.json

reference_url	https://security.gentoo.org/glsa/201701-47
reference_id	GLSA-201701-47
reference_type
scores
url	https://security.gentoo.org/glsa/201701-47

reference_url	https://access.redhat.com/errata/RHSA-2018:2486
reference_id	RHSA-2018:2486
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:2486

reference_url	https://usn.ubuntu.com/3123-1/
reference_id	USN-3123-1
reference_type
scores
url	https://usn.ubuntu.com/3123-1/

fixed_packages

url pkg:generic/curl.se/curl@7.51.0

purl pkg:generic/curl.se/curl@7.51.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-2x3m-p3eu-y7cn

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-fz2p-bn31-2yha

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0

aliases CVE-2016-8619

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d1pj-eqmw-9ya1

url VCID-f23g-nbn2-6bac

vulnerability_id VCID-f23g-nbn2-6bac

summary

references

reference_url

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8623.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-8623

reference_id

reference_type

scores

value	0.01171
scoring_system	epss
scoring_elements	0.78987
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-8623

reference_url

https://curl.se/docs/CVE-2016-8623.html

reference_id

reference_type

scores

value	High
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-8623.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	2.6
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:P/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

1037192

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/

url

http://www.securityfocus.com/bid/94106

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1388388
reference_id	1388388
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1388388

reference_url

reference_id

94106

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/

url

http://www.securityfocus.com/bid/94106

reference_url

https://curl.haxx.se/docs/adv_20161102I.html

reference_id

adv_20161102I.html

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/

url

https://curl.haxx.se/docs/adv_20161102I.html

reference_url	https://security.archlinux.org/ASA-201611-10
reference_id	ASA-201611-10
reference_type
scores
url	https://security.archlinux.org/ASA-201611-10

reference_url	https://security.archlinux.org/ASA-201611-4
reference_id	ASA-201611-4
reference_type
scores
url	https://security.archlinux.org/ASA-201611-4

reference_url	https://security.archlinux.org/ASA-201611-5
reference_id	ASA-201611-5
reference_type
scores
url	https://security.archlinux.org/ASA-201611-5

reference_url	https://security.archlinux.org/ASA-201611-7
reference_id	ASA-201611-7
reference_type
scores
url	https://security.archlinux.org/ASA-201611-7

reference_url	https://security.archlinux.org/ASA-201611-8
reference_id	ASA-201611-8
reference_type
scores
url	https://security.archlinux.org/ASA-201611-8

reference_url	https://security.archlinux.org/ASA-201611-9
reference_id	ASA-201611-9
reference_type
scores
url	https://security.archlinux.org/ASA-201611-9

reference_url

reference_id

AVG-60

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-61

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-62

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-63

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-65

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-66

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://curl.haxx.se/CVE-2016-8623.patch

reference_url

reference_id

CVE-2016-8623.patch

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/

url

https://curl.haxx.se/CVE-2016-8623.patch

reference_url

reference_id

GLSA-201701-47

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/

url

https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E

reference_url

reference_id

r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/

url

https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E

reference_id

rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/

url

https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E

reference_url

reference_id

RHSA-2018:2486

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8623

reference_url

reference_id

show_bug.cgi?id=CVE-2016-8623

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8623

reference_url

reference_id

tns-2016-21

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8625.json

reference_url	https://usn.ubuntu.com/3123-1/
reference_id	USN-3123-1
reference_type
scores
url	https://usn.ubuntu.com/3123-1/

fixed_packages

url pkg:generic/curl.se/curl@7.51.0

purl pkg:generic/curl.se/curl@7.51.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-2x3m-p3eu-y7cn

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-fz2p-bn31-2yha

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0

aliases CVE-2016-8623

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-f23g-nbn2-6bac

url VCID-fbr5-4t5f-bkaz

vulnerability_id VCID-fbr5-4t5f-bkaz

summary

references

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8625.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-8625

reference_id

reference_type

scores

value	0.01549
scoring_system	epss
scoring_elements	0.8171
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-8625

reference_url

https://curl.se/docs/CVE-2016-8625.html

reference_id

reference_type

scores

value	High
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-8625.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8625
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8625

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:P/I:P/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1388392
reference_id	1388392
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1388392

reference_url	https://security.archlinux.org/ASA-201611-10
reference_id	ASA-201611-10
reference_type
scores
url	https://security.archlinux.org/ASA-201611-10

reference_url	https://security.archlinux.org/ASA-201611-4
reference_id	ASA-201611-4
reference_type
scores
url	https://security.archlinux.org/ASA-201611-4

reference_url	https://security.archlinux.org/ASA-201611-5
reference_id	ASA-201611-5
reference_type
scores
url	https://security.archlinux.org/ASA-201611-5

reference_url	https://security.archlinux.org/ASA-201611-7
reference_id	ASA-201611-7
reference_type
scores
url	https://security.archlinux.org/ASA-201611-7

reference_url	https://security.archlinux.org/ASA-201611-8
reference_id	ASA-201611-8
reference_type
scores
url	https://security.archlinux.org/ASA-201611-8

reference_url	https://security.archlinux.org/ASA-201611-9
reference_id	ASA-201611-9
reference_type
scores
url	https://security.archlinux.org/ASA-201611-9

reference_url

reference_id

AVG-60

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-61

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-62

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-63

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-65

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-66

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22876.json

reference_url	https://security.gentoo.org/glsa/201701-47
reference_id	GLSA-201701-47
reference_type
scores
url	https://security.gentoo.org/glsa/201701-47

reference_url	https://access.redhat.com/errata/RHSA-2018:2486
reference_id	RHSA-2018:2486
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:2486

fixed_packages

url pkg:generic/curl.se/curl@7.51.0

purl pkg:generic/curl.se/curl@7.51.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-2x3m-p3eu-y7cn

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-fz2p-bn31-2yha

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0

aliases CVE-2016-8625

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fbr5-4t5f-bkaz

url VCID-ftpd-hkjh-6udf

vulnerability_id VCID-ftpd-hkjh-6udf

summary curl: Leak of authentication credentials in URL via automatic Referer

references

reference_url

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22876.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-22876

reference_id

reference_type

scores

value	0.00115
scoring_system	epss
scoring_elements	0.29911
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-22876

reference_url

https://curl.se/docs/CVE-2021-22876.html

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Low
scoring_system	cvssv3.1
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/

url

https://curl.se/docs/CVE-2021-22876.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8169
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8169

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8177
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8177

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8231
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8231

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8284
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8284

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8285
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8285

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8286
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8286

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22876
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22876

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22890
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22890

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://hackerone.com/reports/1101882

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/

url

https://hackerone.com/reports/1101882

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1941964
reference_id	1941964
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1941964

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ZC5BMIOKLBQJSFCHEDN2G2C2SH274BP/

reference_id

2ZC5BMIOKLBQJSFCHEDN2G2C2SH274BP

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ZC5BMIOKLBQJSFCHEDN2G2C2SH274BP/

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986269
reference_id	986269
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986269

reference_url

https://security.archlinux.org/AVG-1753

reference_id

AVG-1753

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1753

reference_url

https://security.archlinux.org/AVG-1754

reference_id

AVG-1754

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1754

reference_url

https://security.archlinux.org/AVG-1755

reference_id

AVG-1755

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1755

reference_url

https://security.archlinux.org/AVG-1756

reference_id

AVG-1756

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1756

reference_url

https://security.archlinux.org/AVG-1757

reference_id

AVG-1757

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1757

reference_url

https://security.archlinux.org/AVG-1758

reference_id

AVG-1758

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1758

reference_url

https://security.gentoo.org/glsa/202105-36

reference_id

GLSA-202105-36

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/

url

https://security.gentoo.org/glsa/202105-36

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ITVWPVGLFISU5BJC2BXBRYSDXTXE2YGC/

reference_id

ITVWPVGLFISU5BJC2BXBRYSDXTXE2YGC

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ITVWPVGLFISU5BJC2BXBRYSDXTXE2YGC/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KQUIOYX2KUU6FIUZVB5WWZ6JHSSYSQWJ/

reference_id

KQUIOYX2KUU6FIUZVB5WWZ6JHSSYSQWJ

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KQUIOYX2KUU6FIUZVB5WWZ6JHSSYSQWJ/

reference_url

https://lists.debian.org/debian-lts-announce/2021/05/msg00019.html

reference_id

msg00019.html

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/

url

https://lists.debian.org/debian-lts-announce/2021/05/msg00019.html

reference_url

https://security.netapp.com/advisory/ntap-20210521-0007/

reference_id

ntap-20210521-0007

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/

url

https://security.netapp.com/advisory/ntap-20210521-0007/

reference_url	https://access.redhat.com/errata/RHSA-2021:2471
reference_id	RHSA-2021:2471
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:2471

reference_url	https://access.redhat.com/errata/RHSA-2021:2472
reference_id	RHSA-2021:2472
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:2472

reference_url	https://access.redhat.com/errata/RHSA-2021:4511
reference_id	RHSA-2021:4511
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:4511

reference_url	https://access.redhat.com/errata/RHSA-2022:1354
reference_id	RHSA-2022:1354
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1354

reference_url	https://usn.ubuntu.com/4898-1/
reference_id	USN-4898-1
reference_type
scores
url	https://usn.ubuntu.com/4898-1/

reference_url	https://usn.ubuntu.com/4903-1/
reference_id	USN-4903-1
reference_type
scores
url	https://usn.ubuntu.com/4903-1/

fixed_packages

url pkg:generic/curl.se/curl@7.76.0

purl pkg:generic/curl.se/curl@7.76.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-32gj-mvnb-rudh

vulnerability	VCID-3dn4-6jtb-kqhk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-4pzm-87dd-xqbs

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-62br-m3wt-gqdm

vulnerability	VCID-689c-z62z-ukc7

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-cgpy-5qpn-dkb8

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-f8uz-dv1e-kkab

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-ku14-1pmr-pbbd

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-p2p1-bs19-53hd

vulnerability	VCID-p6hr-p4dr-cyh7

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qteb-88n4-5ka7

vulnerability	VCID-r1c8-6w99-kqgc

vulnerability	VCID-r4re-xx26-2kgm

vulnerability	VCID-sd8m-enmc-muhn

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v13d-ffaa-hyd9

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y7c7-w2ru-gbhm

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.76.0

aliases CVE-2021-22876

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ftpd-hkjh-6udf

url VCID-fvrp-ctdg-kqah

vulnerability_id VCID-fvrp-ctdg-kqah

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9586.json

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9586.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-9586

reference_id

reference_type

scores

value	0.01009
scoring_system	epss
scoring_elements	0.77381
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-9586

reference_url

https://curl.se/docs/CVE-2016-9586.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-9586.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9586
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9586

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	1.2
scoring_system	cvssv2
scoring_elements	AV:L/AC:H/Au:N/C:N/I:N/A:P

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

http://www.securitytracker.com/id/1037515

reference_id

1037515

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/

url

http://www.securitytracker.com/id/1037515

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1406712
reference_id	1406712
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1406712

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=848958
reference_id	848958
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=848958

reference_url

http://www.securityfocus.com/bid/95019

reference_id

95019

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/

url

http://www.securityfocus.com/bid/95019

reference_url

https://curl.haxx.se/docs/adv_20161221A.html

reference_id

adv_20161221A.html

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/

url

https://curl.haxx.se/docs/adv_20161221A.html

reference_url	https://security.archlinux.org/ASA-201612-22
reference_id	ASA-201612-22
reference_type
scores
url	https://security.archlinux.org/ASA-201612-22

reference_url	https://security.archlinux.org/ASA-201701-10
reference_id	ASA-201701-10
reference_type
scores
url	https://security.archlinux.org/ASA-201701-10

reference_url	https://security.archlinux.org/ASA-201701-11
reference_id	ASA-201701-11
reference_type
scores
url	https://security.archlinux.org/ASA-201701-11

reference_url	https://security.archlinux.org/ASA-201701-7
reference_id	ASA-201701-7
reference_type
scores
url	https://security.archlinux.org/ASA-201701-7

reference_url	https://security.archlinux.org/ASA-201701-8
reference_id	ASA-201701-8
reference_type
scores
url	https://security.archlinux.org/ASA-201701-8

reference_url	https://security.archlinux.org/ASA-201701-9
reference_id	ASA-201701-9
reference_type
scores
url	https://security.archlinux.org/ASA-201701-9

reference_url

https://security.archlinux.org/AVG-112

reference_id

AVG-112

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-112

reference_url

https://security.archlinux.org/AVG-113

reference_id

AVG-113

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-113

reference_url

https://security.archlinux.org/AVG-114

reference_id

AVG-114

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-114

reference_url

https://security.archlinux.org/AVG-115

reference_id

AVG-115

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-115

reference_url

https://security.archlinux.org/AVG-116

reference_id

AVG-116

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-116

reference_url

https://security.archlinux.org/AVG-117

reference_id

AVG-117

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-117

reference_url

https://github.com/curl/curl/commit/curl-7_51_0-162-g3ab3c16

reference_id

curl-7_51_0-162-g3ab3c16

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/

url

https://github.com/curl/curl/commit/curl-7_51_0-162-g3ab3c16

reference_url

reference_id

GLSA-201701-47

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/

url

https://lists.debian.org/debian-lts-announce/2018/11/msg00005.html

reference_url

reference_id

msg00005.html

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/

url

https://lists.debian.org/debian-lts-announce/2018/11/msg00005.html

reference_url

https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E

reference_id

r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/

url

https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E

reference_id

rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/

url

https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-9586

reference_id

show_bug.cgi?id=CVE-2016-9586

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-9586

reference_url	https://usn.ubuntu.com/3441-1/
reference_id	USN-3441-1
reference_type
scores
url	https://usn.ubuntu.com/3441-1/

reference_url	https://usn.ubuntu.com/3441-2/
reference_id	USN-3441-2
reference_type
scores
url	https://usn.ubuntu.com/3441-2/

fixed_packages

url pkg:generic/curl.se/curl@7.52.0

purl pkg:generic/curl.se/curl@7.52.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-1pa1-5qav-tfa9

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-2x3m-p3eu-y7cn

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-dmkg-yeua-uffn

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e2km-m1ta-6kes

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fz2p-bn31-2yha

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jtdd-1117-5qfz

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.52.0

aliases CVE-2016-9586

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fvrp-ctdg-kqah

url VCID-g3rz-vtae-h3cw

vulnerability_id VCID-g3rz-vtae-h3cw

summary curl: incorrect verification of SSL certificate with NUL in name

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2417.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2417.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-2417

reference_id

reference_type

scores

value	0.0733
scoring_system	epss
scoring_elements	0.91809
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-2417

reference_url

https://curl.se/docs/CVE-2009-2417.html

reference_id

reference_type

scores

value	High
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2009-2417.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2417
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2417

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=516181
reference_id	516181
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=516181

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=541991
reference_id	541991
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=541991

reference_url	https://security.gentoo.org/glsa/200909-20
reference_id	GLSA-200909-20
reference_type
scores
url	https://security.gentoo.org/glsa/200909-20

reference_url	https://access.redhat.com/errata/RHSA-2009:1209
reference_id	RHSA-2009:1209
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1209

reference_url	https://usn.ubuntu.com/1158-1/
reference_id	USN-1158-1
reference_type
scores
url	https://usn.ubuntu.com/1158-1/

reference_url	https://usn.ubuntu.com/818-1/
reference_id	USN-818-1
reference_type
scores
url	https://usn.ubuntu.com/818-1/

fixed_packages

url pkg:generic/curl.se/curl@7.19.6

purl pkg:generic/curl.se/curl@7.19.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-72pz-4qf7-xfdb

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-958x-aqdm-27br

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a9jr-hx2n-87ch

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-b8jv-hnb7-eqfc

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-ddky-6vbe-nqc8

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-gme9-9d93-8bgk

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hg7c-ydk3-7ybq

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-njfg-99cj-cfh4

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-p9gw-tfvj-xfb7

vulnerability	VCID-pgqj-25tn-akf3

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qc6p-1m1y-a3ar

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qrrf-z64u-zkck

vulnerability	VCID-qxf1-m33c-3kbq

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-snt9-bpy7-pqhd

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-vhq1-me6w-uqfm

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-x6jw-xxpk-eufb

vulnerability	VCID-x6pd-2arc-gqdq

vulnerability	VCID-xq5h-af6j-r3fa

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-y841-wa7x-gyd4

vulnerability	VCID-yn3p-7hnq-13hv

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-za4f-bm16-j7ba

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.19.6

aliases CVE-2009-2417

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g3rz-vtae-h3cw

url VCID-gme9-9d93-8bgk

vulnerability_id VCID-gme9-9d93-8bgk

summary

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0138.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0138.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-0138

reference_id

reference_type

scores

value	0.00928
scoring_system	epss
scoring_elements	0.76414
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-0138

reference_url

https://curl.se/docs/CVE-2014-0138.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2014-0138.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0138
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0138

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0139
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0139

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1079148
reference_id	1079148
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1079148

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742728
reference_id	742728
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742728

reference_url	https://security.gentoo.org/glsa/201406-21
reference_id	GLSA-201406-21
reference_type
scores
url	https://security.gentoo.org/glsa/201406-21

reference_url	https://access.redhat.com/errata/RHSA-2014:0561
reference_id	RHSA-2014:0561
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:0561

reference_url	https://usn.ubuntu.com/2167-1/
reference_id	USN-2167-1
reference_type
scores
url	https://usn.ubuntu.com/2167-1/

fixed_packages

url pkg:generic/curl.se/curl@7.36.0

purl pkg:generic/curl.se/curl@7.36.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-3m3q-mxu4-9uhh

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-72pz-4qf7-xfdb

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8kzz-y6n1-97cv

vulnerability	VCID-958x-aqdm-27br

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9ck1-b1zb-euad

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-b8jv-hnb7-eqfc

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-dcuk-131b-pbgp

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-m3hp-gvpn-4kea

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-p9gw-tfvj-xfb7

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qc6p-1m1y-a3ar

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qrrf-z64u-zkck

vulnerability	VCID-qxf1-m33c-3kbq

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-snt9-bpy7-pqhd

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-t49y-2csd-q7c9

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uq2h-5uqp-rfbg

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vhq1-me6w-uqfm

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-xq5h-af6j-r3fa

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-yn3p-7hnq-13hv

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-za4f-bm16-j7ba

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.36.0

aliases CVE-2014-0138

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gme9-9d93-8bgk

url VCID-h6tz-3ztg-byhr

vulnerability_id VCID-h6tz-3ztg-byhr

summary curl: credential leak on redirect

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-27774.json

reference_id

reference_type

scores

value	5.0
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-27774.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-27774

reference_id

reference_type

scores

value	0.00314
scoring_system	epss
scoring_elements	0.54801
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-27774

reference_url

https://curl.se/docs/CVE-2022-27774.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2022-27774.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://hackerone.com/reports/1543773

reference_id

reference_type

scores

value	5.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:41:23Z/

url

https://hackerone.com/reports/1543773

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010254
reference_id	1010254
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010254

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2077547
reference_id	2077547
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2077547

reference_url

reference_id

AVG-2685

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

dsa-5197

reference_type

scores

value	5.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:41:23Z/

url

reference_url

reference_id

GLSA-202212-01

reference_type

scores

value	5.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:41:23Z/

url

https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html

reference_url

reference_id

msg00028.html

reference_type

scores

value	5.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:41:23Z/

url

https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html

reference_url

https://security.netapp.com/advisory/ntap-20220609-0008/

reference_id

ntap-20220609-0008

reference_type

scores

value	5.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:41:23Z/

url

https://security.netapp.com/advisory/ntap-20220609-0008/

reference_url	https://access.redhat.com/errata/RHSA-2022:5245
reference_id	RHSA-2022:5245
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5245

reference_url	https://access.redhat.com/errata/RHSA-2022:5313
reference_id	RHSA-2022:5313
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5313

reference_url	https://usn.ubuntu.com/5397-1/
reference_id	USN-5397-1
reference_type
scores
url	https://usn.ubuntu.com/5397-1/

fixed_packages

url pkg:generic/curl.se/curl@7.83.0

purl pkg:generic/curl.se/curl@7.83.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-32gj-mvnb-rudh

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-4pzm-87dd-xqbs

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689c-z62z-ukc7

vulnerability	VCID-71rt-1h3a-jkcm

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e1rm-18vc-rkc2

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-frj4-zf2v-87g2

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-hsjj-6vfn-4ugt

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-ku14-1pmr-pbbd

vulnerability	VCID-kudb-x77h-1ud4

vulnerability	VCID-nhst-thye-guh2

vulnerability	VCID-nmwe-9bw8-2ud1

vulnerability	VCID-p2p1-bs19-53hd

vulnerability	VCID-p6hr-p4dr-cyh7

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qteb-88n4-5ka7

vulnerability	VCID-r1c8-6w99-kqgc

vulnerability	VCID-r4re-xx26-2kgm

vulnerability	VCID-sd8m-enmc-muhn

vulnerability	VCID-srgc-rxj3-6ydd

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-tx73-4h2v-uyb4

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-v13d-ffaa-hyd9

vulnerability	VCID-wj8v-8fnv-kqgj

vulnerability	VCID-y7c7-w2ru-gbhm

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.83.0

aliases CVE-2022-27774

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h6tz-3ztg-byhr

url VCID-hg7c-ydk3-7ybq

vulnerability_id VCID-hg7c-ydk3-7ybq

summary curl: Cookie domain suffix match vulnerability

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1944.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1944.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-1944

reference_id

reference_type

scores

value	0.02482
scoring_system	epss
scoring_elements	0.85537
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-1944

reference_url

https://curl.se/docs/CVE-2013-1944.html

reference_id

reference_type

scores

value	High
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2013-1944.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1944
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1944

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=705274
reference_id	705274
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=705274

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=950577
reference_id	950577
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=950577

reference_url	https://security.gentoo.org/glsa/201401-14
reference_id	GLSA-201401-14
reference_type
scores
url	https://security.gentoo.org/glsa/201401-14

reference_url	https://access.redhat.com/errata/RHSA-2013:0771
reference_id	RHSA-2013:0771
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0771

reference_url	https://usn.ubuntu.com/1801-1/
reference_id	USN-1801-1
reference_type
scores
url	https://usn.ubuntu.com/1801-1/

fixed_packages

url pkg:generic/curl.se/curl@7.30.0

purl pkg:generic/curl.se/curl@7.30.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-72pz-4qf7-xfdb

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8kzz-y6n1-97cv

vulnerability	VCID-958x-aqdm-27br

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a9jr-hx2n-87ch

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-b8jv-hnb7-eqfc

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-ddky-6vbe-nqc8

vulnerability	VCID-ddtt-b7y9-ubgn

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-gme9-9d93-8bgk

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hk4n-peps-yuck

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-m3hp-gvpn-4kea

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-njfg-99cj-cfh4

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-p9gw-tfvj-xfb7

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qc6p-1m1y-a3ar

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qrrf-z64u-zkck

vulnerability	VCID-qxf1-m33c-3kbq

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-snt9-bpy7-pqhd

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v3w9-aq2q-6kdd

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vhq1-me6w-uqfm

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-xq5h-af6j-r3fa

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-y841-wa7x-gyd4

vulnerability	VCID-yn3p-7hnq-13hv

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-za4f-bm16-j7ba

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.30.0

aliases CVE-2013-1944

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hg7c-ydk3-7ybq

url VCID-jeet-9rt6-vygh

vulnerability_id VCID-jeet-9rt6-vygh

summary curl: local file access via unsafe redirects

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0037.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0037.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-0037

reference_id

reference_type

scores

value	0.09919
scoring_system	epss
scoring_elements	0.9314
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-0037

reference_url

https://curl.se/docs/CVE-2009-0037.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2009-0037.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0037
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0037

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=485271
reference_id	485271
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=485271

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=518423
reference_id	518423
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=518423

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/32834.txt
reference_id	CVE-2009-0037;OSVDB-53572
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/32834.txt

reference_url	https://www.securityfocus.com/bid/33962/info
reference_id	CVE-2009-0037;OSVDB-53572
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/33962/info

reference_url	https://security.gentoo.org/glsa/200903-21
reference_id	GLSA-200903-21
reference_type
scores
url	https://security.gentoo.org/glsa/200903-21

reference_url	https://access.redhat.com/errata/RHSA-2009:0341
reference_id	RHSA-2009:0341
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:0341

reference_url	https://usn.ubuntu.com/726-1/
reference_id	USN-726-1
reference_type
scores
url	https://usn.ubuntu.com/726-1/

fixed_packages

url pkg:generic/curl.se/curl@7.19.4

purl pkg:generic/curl.se/curl@7.19.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-72pz-4qf7-xfdb

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-958x-aqdm-27br

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a9jr-hx2n-87ch

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-b8jv-hnb7-eqfc

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-ddky-6vbe-nqc8

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-g3rz-vtae-h3cw

vulnerability	VCID-gme9-9d93-8bgk

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hg7c-ydk3-7ybq

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-njfg-99cj-cfh4

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-p9gw-tfvj-xfb7

vulnerability	VCID-pgqj-25tn-akf3

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qc6p-1m1y-a3ar

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qrrf-z64u-zkck

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-snt9-bpy7-pqhd

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-vhq1-me6w-uqfm

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-x6jw-xxpk-eufb

vulnerability	VCID-x6pd-2arc-gqdq

vulnerability	VCID-xq5h-af6j-r3fa

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-y841-wa7x-gyd4

vulnerability	VCID-yn3p-7hnq-13hv

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-za4f-bm16-j7ba

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.19.4

aliases CVE-2009-0037

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jeet-9rt6-vygh

url VCID-jukq-4rsf-f7hb

vulnerability_id VCID-jukq-4rsf-f7hb

summary curl: Bad connection reuse due to flawed path name checks

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22924.json

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22924.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-22924

reference_id

reference_type

scores

value	0.00746
scoring_system	epss
scoring_elements	0.7337
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-22924

reference_url

https://curl.se/docs/CVE-2021-22924.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2021-22924.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://hackerone.com/reports/1223565

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/

url

https://hackerone.com/reports/1223565

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1981460
reference_id	1981460
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1981460

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991492
reference_id	991492
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991492

reference_url	https://security.archlinux.org/ASA-202107-59
reference_id	ASA-202107-59
reference_type
scores
url	https://security.archlinux.org/ASA-202107-59

reference_url	https://security.archlinux.org/ASA-202107-60
reference_id	ASA-202107-60
reference_type
scores
url	https://security.archlinux.org/ASA-202107-60

reference_url	https://security.archlinux.org/ASA-202107-61
reference_id	ASA-202107-61
reference_type
scores
url	https://security.archlinux.org/ASA-202107-61

reference_url	https://security.archlinux.org/ASA-202107-62
reference_id	ASA-202107-62
reference_type
scores
url	https://security.archlinux.org/ASA-202107-62

reference_url	https://security.archlinux.org/ASA-202107-63
reference_id	ASA-202107-63
reference_type
scores
url	https://security.archlinux.org/ASA-202107-63

reference_url	https://security.archlinux.org/ASA-202107-64
reference_id	ASA-202107-64
reference_type
scores
url	https://security.archlinux.org/ASA-202107-64

reference_url

reference_id

AVG-2194

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-2195

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-2196

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-2197

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-2198

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-2199

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2021-22924
reference_id	CVE-2021-22924
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2021-22924

reference_url

reference_id

dsa-5197

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/

reference_url

reference_id

FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/

reference_url

https://lists.debian.org/debian-lts-announce/2021/08/msg00017.html

reference_id

msg00017.html

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/

url

https://lists.debian.org/debian-lts-announce/2021/08/msg00017.html

reference_url

https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html

reference_id

msg00017.html

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/

url

https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html

reference_url

https://security.netapp.com/advisory/ntap-20210902-0003/

reference_id

ntap-20210902-0003

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/

url

https://security.netapp.com/advisory/ntap-20210902-0003/

reference_url

https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cdev.kafka.apache.org%3E

reference_id

r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cdev.kafka.apache.org%3E

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/

url

https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cdev.kafka.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cusers.kafka.apache.org%3E

reference_id

r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cusers.kafka.apache.org%3E

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/

url

https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cusers.kafka.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cdev.kafka.apache.org%3E

reference_id

rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cdev.kafka.apache.org%3E

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/

url

https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cdev.kafka.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cusers.kafka.apache.org%3E

reference_id

rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cusers.kafka.apache.org%3E

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/

url

https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cusers.kafka.apache.org%3E

reference_url	https://access.redhat.com/errata/RHSA-2021:3582
reference_id	RHSA-2021:3582
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:3582

reference_url	https://access.redhat.com/errata/RHSA-2022:1354
reference_id	RHSA-2022:1354
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1354

reference_url

https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf

reference_id

ssa-484086.pdf

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/

url

https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf

reference_url

https://cert-portal.siemens.com/productcert/pdf/ssa-732250.pdf

reference_id

ssa-732250.pdf

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/

url

https://cert-portal.siemens.com/productcert/pdf/ssa-732250.pdf

reference_url	https://usn.ubuntu.com/5021-1/
reference_id	USN-5021-1
reference_type
scores
url	https://usn.ubuntu.com/5021-1/

fixed_packages

url pkg:generic/curl.se/curl@7.78.0

purl pkg:generic/curl.se/curl@7.78.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-32gj-mvnb-rudh

vulnerability	VCID-3dn4-6jtb-kqhk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-4pzm-87dd-xqbs

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689c-z62z-ukc7

vulnerability	VCID-71rt-1h3a-jkcm

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e1rm-18vc-rkc2

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-f8uz-dv1e-kkab

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-frj4-zf2v-87g2

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-ku14-1pmr-pbbd

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-nmwe-9bw8-2ud1

vulnerability	VCID-p2p1-bs19-53hd

vulnerability	VCID-p6hr-p4dr-cyh7

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qteb-88n4-5ka7

vulnerability	VCID-r1c8-6w99-kqgc

vulnerability	VCID-r4re-xx26-2kgm

vulnerability	VCID-sd8m-enmc-muhn

vulnerability	VCID-srgc-rxj3-6ydd

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v13d-ffaa-hyd9

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-y7c7-w2ru-gbhm

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.78.0

aliases CVE-2021-22924

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jukq-4rsf-f7hb

url VCID-k93r-eqgb-fqgq

vulnerability_id VCID-k93r-eqgb-fqgq

summary curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-7168.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-7168.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-7168

reference_id

reference_type

scores

value	0.00079
scoring_system	epss
scoring_elements	0.23395
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-7168

reference_url

https://curl.se/docs/CVE-2026-7168.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2026-7168.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7168
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7168

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://hackerone.com/reports/3697719
reference_id
reference_type
scores
url	https://hackerone.com/reports/3697719

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2476979
reference_id	2476979
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2476979

reference_url	https://access.redhat.com/errata/RHSA-2026:19106
reference_id	RHSA-2026:19106
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:19106

reference_url	https://usn.ubuntu.com/8227-1/
reference_id	USN-8227-1
reference_type
scores
url	https://usn.ubuntu.com/8227-1/

fixed_packages

url	pkg:generic/curl.se/curl@8.20.0
purl	pkg:generic/curl.se/curl@8.20.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.20.0

aliases CVE-2026-7168

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k93r-eqgb-fqgq

url VCID-njfg-99cj-cfh4

vulnerability_id VCID-njfg-99cj-cfh4

summary

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0139.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0139.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-0139

reference_id

reference_type

scores

value	0.0167
scoring_system	epss
scoring_elements	0.8243
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-0139

reference_url

https://curl.se/docs/CVE-2014-0139.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2014-0139.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0138
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0138

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0139
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0139

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1079149
reference_id	1079149
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1079149

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742728
reference_id	742728
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742728

reference_url	https://security.gentoo.org/glsa/201406-21
reference_id	GLSA-201406-21
reference_type
scores
url	https://security.gentoo.org/glsa/201406-21

reference_url	https://usn.ubuntu.com/2167-1/
reference_id	USN-2167-1
reference_type
scores
url	https://usn.ubuntu.com/2167-1/

fixed_packages

url pkg:generic/curl.se/curl@7.36.0

purl pkg:generic/curl.se/curl@7.36.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-3m3q-mxu4-9uhh

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-72pz-4qf7-xfdb

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8kzz-y6n1-97cv

vulnerability	VCID-958x-aqdm-27br

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9ck1-b1zb-euad

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-b8jv-hnb7-eqfc

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-dcuk-131b-pbgp

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-m3hp-gvpn-4kea

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-p9gw-tfvj-xfb7

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qc6p-1m1y-a3ar

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qrrf-z64u-zkck

vulnerability	VCID-qxf1-m33c-3kbq

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-snt9-bpy7-pqhd

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-t49y-2csd-q7c9

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uq2h-5uqp-rfbg

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vhq1-me6w-uqfm

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-xq5h-af6j-r3fa

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-yn3p-7hnq-13hv

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-za4f-bm16-j7ba

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.36.0

aliases CVE-2014-0139

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-njfg-99cj-cfh4

url VCID-nuef-bv37-hfaz

vulnerability_id VCID-nuef-bv37-hfaz

summary curl: FTP PASV command response can cause curl to connect to arbitrary host

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-8284.json

reference_id

reference_type

scores

value	3.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-8284.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-8284

reference_id

reference_type

scores

value	0.00104
scoring_system	epss
scoring_elements	0.27993
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-8284

reference_url

https://curl.se/docs/CVE-2020-8284.html

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Low
scoring_system	cvssv3.1
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/

url

https://curl.se/docs/CVE-2020-8284.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8169
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8169

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8177
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8177

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8231
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8231

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8284
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8284

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8285
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8285

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8286
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8286

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22876
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22876

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22890
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22890

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://hackerone.com/reports/1040166

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/

url

https://hackerone.com/reports/1040166

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1902667
reference_id	1902667
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1902667

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=977163
reference_id	977163
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=977163

reference_url

https://security.archlinux.org/AVG-1337

reference_id

AVG-1337

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1337

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DAEHE2S2QLO4AO4MEEYL75NB7SAH5PSL/

reference_id

DAEHE2S2QLO4AO4MEEYL75NB7SAH5PSL

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DAEHE2S2QLO4AO4MEEYL75NB7SAH5PSL/

reference_url

https://www.debian.org/security/2021/dsa-4881

reference_id

dsa-4881

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/

url

https://www.debian.org/security/2021/dsa-4881

reference_url

https://security.gentoo.org/glsa/202012-14

reference_id

GLSA-202012-14

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/

url

https://security.gentoo.org/glsa/202012-14

reference_url

https://support.apple.com/kb/HT212325

reference_id

HT212325

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/

url

https://support.apple.com/kb/HT212325

reference_url

https://support.apple.com/kb/HT212326

reference_id

HT212326

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/

url

https://support.apple.com/kb/HT212326

reference_url

https://support.apple.com/kb/HT212327

reference_id

HT212327

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/

url

https://support.apple.com/kb/HT212327

reference_url

https://lists.debian.org/debian-lts-announce/2020/12/msg00029.html

reference_id

msg00029.html

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/

url

https://lists.debian.org/debian-lts-announce/2020/12/msg00029.html

reference_url

https://security.netapp.com/advisory/ntap-20210122-0007/

reference_id

ntap-20210122-0007

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/

url

https://security.netapp.com/advisory/ntap-20210122-0007/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NZUVSQHN2ESHMJXNQ2Z7T2EELBB5HJXG/

reference_id

NZUVSQHN2ESHMJXNQ2Z7T2EELBB5HJXG

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NZUVSQHN2ESHMJXNQ2Z7T2EELBB5HJXG/

reference_url	https://access.redhat.com/errata/RHSA-2021:1610
reference_id	RHSA-2021:1610
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1610

reference_url	https://access.redhat.com/errata/RHSA-2021:2471
reference_id	RHSA-2021:2471
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:2471

reference_url	https://access.redhat.com/errata/RHSA-2021:2472
reference_id	RHSA-2021:2472
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:2472

reference_url	https://usn.ubuntu.com/4665-1/
reference_id	USN-4665-1
reference_type
scores
url	https://usn.ubuntu.com/4665-1/

reference_url	https://usn.ubuntu.com/4665-2/
reference_id	USN-4665-2
reference_type
scores
url	https://usn.ubuntu.com/4665-2/

fixed_packages

url pkg:generic/curl.se/curl@7.74.0

purl pkg:generic/curl.se/curl@7.74.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-32gj-mvnb-rudh

vulnerability	VCID-3dn4-6jtb-kqhk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-4pzm-87dd-xqbs

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-cgpy-5qpn-dkb8

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-f8uz-dv1e-kkab

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-ku14-1pmr-pbbd

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-p2p1-bs19-53hd

vulnerability	VCID-p6hr-p4dr-cyh7

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qteb-88n4-5ka7

vulnerability	VCID-r4re-xx26-2kgm

vulnerability	VCID-r9g6-71tv-byak

vulnerability	VCID-sd8m-enmc-muhn

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v13d-ffaa-hyd9

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y7c7-w2ru-gbhm

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.74.0

aliases CVE-2020-8284

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nuef-bv37-hfaz

url VCID-p9gw-tfvj-xfb7

vulnerability_id VCID-p9gw-tfvj-xfb7

summary curl: NTLM credentials not-checked for proxy connection re-use

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0755.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0755.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-0755

reference_id

reference_type

scores

value	0.00346
scoring_system	epss
scoring_elements	0.57447
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-0755

reference_url

https://curl.se/docs/CVE-2016-0755.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-0755.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0755
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0755

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1302263
reference_id	1302263
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1302263

reference_url	https://security.gentoo.org/glsa/201701-47
reference_id	GLSA-201701-47
reference_type
scores
url	https://security.gentoo.org/glsa/201701-47

reference_url	https://usn.ubuntu.com/2882-1/
reference_id	USN-2882-1
reference_type
scores
url	https://usn.ubuntu.com/2882-1/

fixed_packages

url pkg:generic/curl.se/curl@7.47.0

purl pkg:generic/curl.se/curl@7.47.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-2x3m-p3eu-y7cn

vulnerability	VCID-3m3q-mxu4-9uhh

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-72pz-4qf7-xfdb

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-8kzz-y6n1-97cv

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-m3hp-gvpn-4kea

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qxf1-m33c-3kbq

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uq2h-5uqp-rfbg

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vhq1-me6w-uqfm

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-xq5h-af6j-r3fa

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.47.0

aliases CVE-2016-0755

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p9gw-tfvj-xfb7

url VCID-pgqj-25tn-akf3

vulnerability_id VCID-pgqj-25tn-akf3

summary curl: zlib-compression causes curl to pass more than CURL_MAX_WRITE_SIZE bytes to write callback

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0734.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0734.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2010-0734

reference_id

reference_type

scores

value	0.0548
scoring_system	epss
scoring_elements	0.90344
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2010-0734

reference_url

https://curl.se/docs/CVE-2010-0734.html

reference_id

reference_type

scores

value	High
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2010-0734.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0734
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0734

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=563220
reference_id	563220
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=563220

reference_url	https://security.gentoo.org/glsa/201203-02
reference_id	GLSA-201203-02
reference_type
scores
url	https://security.gentoo.org/glsa/201203-02

reference_url	https://access.redhat.com/errata/RHSA-2010:0273
reference_id	RHSA-2010:0273
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0273

reference_url	https://access.redhat.com/errata/RHSA-2010:0329
reference_id	RHSA-2010:0329
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0329

reference_url	https://usn.ubuntu.com/1158-1/
reference_id	USN-1158-1
reference_type
scores
url	https://usn.ubuntu.com/1158-1/

fixed_packages

url pkg:generic/curl.se/curl@7.20.0

purl pkg:generic/curl.se/curl@7.20.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-2nad-8f6j-a7bz

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-4wmd-2ube-6ud3

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-72pz-4qf7-xfdb

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-958x-aqdm-27br

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a9jr-hx2n-87ch

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-b8jv-hnb7-eqfc

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-ddky-6vbe-nqc8

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-gme9-9d93-8bgk

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hg7c-ydk3-7ybq

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-njfg-99cj-cfh4

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-p9gw-tfvj-xfb7

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qc6p-1m1y-a3ar

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qrrf-z64u-zkck

vulnerability	VCID-qxf1-m33c-3kbq

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-snt9-bpy7-pqhd

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vhq1-me6w-uqfm

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-x6jw-xxpk-eufb

vulnerability	VCID-x6pd-2arc-gqdq

vulnerability	VCID-xq5h-af6j-r3fa

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-y841-wa7x-gyd4

vulnerability	VCID-yn3p-7hnq-13hv

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-za4f-bm16-j7ba

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.20.0

aliases CVE-2010-0734

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pgqj-25tn-akf3

url VCID-ptdk-wtvg-zkaw

vulnerability_id VCID-ptdk-wtvg-zkaw

summary curl: IDN wildcard match may lead to Improper Cerificate Validation

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28321.json

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28321.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-28321

reference_id

reference_type

scores

value	0.00297
scoring_system	epss
scoring_elements	0.53255
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-28321

reference_url

https://curl.se/docs/CVE-2023-28321.html

reference_id

reference_type

scores

value	Low
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2023-28321.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28321
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28321

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://hackerone.com/reports/1950627

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/

url

https://hackerone.com/reports/1950627

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036239
reference_id	1036239
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036239

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2196786
reference_id	2196786
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2196786

reference_url

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/

url

reference_url

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/

url

reference_url

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F4I75RDGX5ULSSCBE5BF3P5I5SFO7ULQ/

reference_url

reference_id

F4I75RDGX5ULSSCBE5BF3P5I5SFO7ULQ

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F4I75RDGX5ULSSCBE5BF3P5I5SFO7ULQ/

reference_url

reference_id

GLSA-202310-12

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/

url

reference_url

reference_id

HT213843

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/

url

reference_url

reference_id

HT213844

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/

url

reference_url

reference_id

HT213845

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/

url

https://lists.debian.org/debian-lts-announce/2023/10/msg00016.html

reference_url

reference_id

msg00016.html

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/

url

https://lists.debian.org/debian-lts-announce/2023/10/msg00016.html

reference_url

https://security.netapp.com/advisory/ntap-20230609-0009/

reference_id

ntap-20230609-0009

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/

url

https://security.netapp.com/advisory/ntap-20230609-0009/

reference_url	https://access.redhat.com/errata/RHSA-2023:4354
reference_id	RHSA-2023:4354
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4354

reference_url	https://access.redhat.com/errata/RHSA-2023:4523
reference_id	RHSA-2023:4523
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4523

reference_url	https://access.redhat.com/errata/RHSA-2023:4628
reference_id	RHSA-2023:4628
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4628

reference_url	https://access.redhat.com/errata/RHSA-2023:4629
reference_id	RHSA-2023:4629
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4629

reference_url	https://access.redhat.com/errata/RHSA-2023:5598
reference_id	RHSA-2023:5598
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5598

reference_url	https://access.redhat.com/errata/RHSA-2023:6292
reference_id	RHSA-2023:6292
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6292

reference_url	https://usn.ubuntu.com/6237-1/
reference_id	USN-6237-1
reference_type
scores
url	https://usn.ubuntu.com/6237-1/

reference_url	https://usn.ubuntu.com/6237-3/
reference_id	USN-6237-3
reference_type
scores
url	https://usn.ubuntu.com/6237-3/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z2LIWHWKOVH24COGGBCVOWDXXIUPKOMK/

reference_id

Z2LIWHWKOVH24COGGBCVOWDXXIUPKOMK

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z2LIWHWKOVH24COGGBCVOWDXXIUPKOMK/

fixed_packages

url pkg:generic/curl.se/curl@8.1.0

purl pkg:generic/curl.se/curl@8.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-32gj-mvnb-rudh

vulnerability	VCID-4pzm-87dd-xqbs

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-5jsn-ubxh-fqe4

vulnerability	VCID-5stq-jajr-57hv

vulnerability	VCID-689c-z62z-ukc7

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-ku14-1pmr-pbbd

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qteb-88n4-5ka7

vulnerability	VCID-r1c8-6w99-kqgc

vulnerability	VCID-r4re-xx26-2kgm

vulnerability	VCID-sd8m-enmc-muhn

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-ujr4-yect-subh

vulnerability	VCID-x47y-r42c-bkfk

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.1.0

aliases CVE-2023-28321

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ptdk-wtvg-zkaw

url VCID-qax6-9qcb-6yah

vulnerability_id VCID-qax6-9qcb-6yah

summary curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-5545.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-5545.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-5545

reference_id

reference_type

scores

value	0.00037
scoring_system	epss
scoring_elements	0.11312
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-5545

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-5545
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-5545

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2461204
reference_id	2461204
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2461204

reference_url

https://hackerone.com/reports/3642555

reference_id

3642555

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-13T17:46:36Z/

url

https://hackerone.com/reports/3642555

reference_url

https://curl.se/docs/CVE-2026-5545.html

reference_id

CVE-2026-5545.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N

value	Medium
scoring_system	cvssv3.1
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-13T17:46:36Z/

url

https://curl.se/docs/CVE-2026-5545.html

reference_url

https://curl.se/docs/CVE-2026-5545.json

reference_id

CVE-2026-5545.json

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-13T17:46:36Z/

url

https://curl.se/docs/CVE-2026-5545.json

reference_url	https://access.redhat.com/errata/RHSA-2026:12916
reference_id	RHSA-2026:12916
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:12916

reference_url	https://usn.ubuntu.com/8227-1/
reference_id	USN-8227-1
reference_type
scores
url	https://usn.ubuntu.com/8227-1/

fixed_packages

url	pkg:generic/curl.se/curl@8.20.0
purl	pkg:generic/curl.se/curl@8.20.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.20.0

aliases CVE-2026-5545

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qax6-9qcb-6yah

url VCID-qc6p-1m1y-a3ar

vulnerability_id VCID-qc6p-1m1y-a3ar

summary curl: URL request injection vulnerability in parseurlandfillconn()

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8150.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8150.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8150

reference_id

reference_type

scores

value	0.01225
scoring_system	epss
scoring_elements	0.79432
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8150

reference_url

https://curl.se/docs/CVE-2014-8150.html

reference_id

reference_type

scores

value	High
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2014-8150.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8150
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8150

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1178692
reference_id	1178692
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1178692

reference_url	https://security.gentoo.org/glsa/201701-47
reference_id	GLSA-201701-47
reference_type
scores
url	https://security.gentoo.org/glsa/201701-47

reference_url	https://access.redhat.com/errata/RHSA-2015:1254
reference_id	RHSA-2015:1254
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1254

reference_url	https://access.redhat.com/errata/RHSA-2015:2159
reference_id	RHSA-2015:2159
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2159

reference_url	https://usn.ubuntu.com/2474-1/
reference_id	USN-2474-1
reference_type
scores
url	https://usn.ubuntu.com/2474-1/

fixed_packages

url pkg:generic/curl.se/curl@7.40.0

purl pkg:generic/curl.se/curl@7.40.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-3m3q-mxu4-9uhh

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-72pz-4qf7-xfdb

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8kzz-y6n1-97cv

vulnerability	VCID-958x-aqdm-27br

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-bzpr-8cw4-zkd6

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-dcuk-131b-pbgp

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-m3hp-gvpn-4kea

vulnerability	VCID-mw8z-vyq4-5kf3

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-p9gw-tfvj-xfb7

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qrrf-z64u-zkck

vulnerability	VCID-qxf1-m33c-3kbq

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uq2h-5uqp-rfbg

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vhq1-me6w-uqfm

vulnerability	VCID-vqf9-y6k7-f7bt

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-xq5h-af6j-r3fa

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-yn3p-7hnq-13hv

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-za4f-bm16-j7ba

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.40.0

aliases CVE-2014-8150

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qc6p-1m1y-a3ar

url VCID-qqyy-ejjy-zugp

vulnerability_id VCID-qqyy-ejjy-zugp

summary curl: siglongjmp race condition may lead to crash

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28320.json

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28320.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-28320

reference_id

reference_type

scores

value	0.00641
scoring_system	epss
scoring_elements	0.70928
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-28320

reference_url

https://curl.se/docs/CVE-2023-28320.html

reference_id

reference_type

scores

value	Low
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2023-28320.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28320
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28320

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://hackerone.com/reports/1929597

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/

url

https://hackerone.com/reports/1929597

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036239
reference_id	1036239
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036239

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2196783
reference_id	2196783
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2196783

reference_url

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/

url

reference_url

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/

url

reference_url

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/

url

reference_url

reference_id

GLSA-202310-12

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/

url

reference_url

reference_id

HT213843

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/

url

reference_url

reference_id

HT213844

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/

url

reference_url

reference_id

HT213845

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/

url

https://security.netapp.com/advisory/ntap-20230609-0009/

reference_url

reference_id

ntap-20230609-0009

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/

url

https://security.netapp.com/advisory/ntap-20230609-0009/

fixed_packages

url pkg:generic/curl.se/curl@8.1.0

purl pkg:generic/curl.se/curl@8.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-32gj-mvnb-rudh

vulnerability	VCID-4pzm-87dd-xqbs

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-5jsn-ubxh-fqe4

vulnerability	VCID-5stq-jajr-57hv

vulnerability	VCID-689c-z62z-ukc7

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-ku14-1pmr-pbbd

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qteb-88n4-5ka7

vulnerability	VCID-r1c8-6w99-kqgc

vulnerability	VCID-r4re-xx26-2kgm

vulnerability	VCID-sd8m-enmc-muhn

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-ujr4-yect-subh

vulnerability	VCID-x47y-r42c-bkfk

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.1.0

aliases CVE-2023-28320

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qqyy-ejjy-zugp

url VCID-qrrf-z64u-zkck

vulnerability_id VCID-qrrf-z64u-zkck

summary curl: Negotiate not treated as connection-oriented

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3148.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3148.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-3148

reference_id

reference_type

scores

value	0.01422
scoring_system	epss
scoring_elements	0.80909
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-3148

reference_url

https://curl.se/docs/CVE-2015-3148.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2015-3148.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3143
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3143

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3148
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3148

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1213351
reference_id	1213351
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1213351

reference_url	https://security.gentoo.org/glsa/201509-02
reference_id	GLSA-201509-02
reference_type
scores
url	https://security.gentoo.org/glsa/201509-02

reference_url	https://access.redhat.com/errata/RHSA-2015:1254
reference_id	RHSA-2015:1254
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1254

reference_url	https://access.redhat.com/errata/RHSA-2015:2159
reference_id	RHSA-2015:2159
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2159

reference_url	https://usn.ubuntu.com/2591-1/
reference_id	USN-2591-1
reference_type
scores
url	https://usn.ubuntu.com/2591-1/

fixed_packages

url pkg:generic/curl.se/curl@7.42.0

purl pkg:generic/curl.se/curl@7.42.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-3m3q-mxu4-9uhh

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-72pz-4qf7-xfdb

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-8kzz-y6n1-97cv

vulnerability	VCID-958x-aqdm-27br

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-m3hp-gvpn-4kea

vulnerability	VCID-mw8z-vyq4-5kf3

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-p9gw-tfvj-xfb7

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qxf1-m33c-3kbq

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uq2h-5uqp-rfbg

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vhq1-me6w-uqfm

vulnerability	VCID-vqf9-y6k7-f7bt

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-xq5h-af6j-r3fa

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-za4f-bm16-j7ba

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.42.0

aliases CVE-2015-3148

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qrrf-z64u-zkck

url VCID-qze3-vubf-67ej

vulnerability_id VCID-qze3-vubf-67ej

summary security flaw

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3185.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3185.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2005-3185

reference_id

reference_type

scores

value	0.04852
scoring_system	epss
scoring_elements	0.89701
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2005-3185

reference_url

https://curl.se/docs/CVE-2005-3185.html

reference_id

reference_type

scores

value	High
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2005-3185.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3185
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3185

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1617794
reference_id	1617794
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1617794

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=333734
reference_id	333734
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=333734

reference_url	https://security.gentoo.org/glsa/200510-19
reference_id	GLSA-200510-19
reference_type
scores
url	https://security.gentoo.org/glsa/200510-19

reference_url	https://access.redhat.com/errata/RHSA-2005:807
reference_id	RHSA-2005:807
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2005:807

reference_url	https://access.redhat.com/errata/RHSA-2005:812
reference_id	RHSA-2005:812
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2005:812

reference_url	https://usn.ubuntu.com/205-1/
reference_id	USN-205-1
reference_type
scores
url	https://usn.ubuntu.com/205-1/

fixed_packages

url pkg:generic/curl.se/curl@7.15.0

purl pkg:generic/curl.se/curl@7.15.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-72pz-4qf7-xfdb

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-958x-aqdm-27br

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-a9jr-hx2n-87ch

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-b4x7-cte8-zqhu

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-b8jv-hnb7-eqfc

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-g3rz-vtae-h3cw

vulnerability	VCID-gg9j-f99e-qfgn

vulnerability	VCID-gme9-9d93-8bgk

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hg7c-ydk3-7ybq

vulnerability	VCID-jeet-9rt6-vygh

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-njfg-99cj-cfh4

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-p9gw-tfvj-xfb7

vulnerability	VCID-pgqj-25tn-akf3

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qc6p-1m1y-a3ar

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qrrf-z64u-zkck

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tvwg-295p-c3c6

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-vhq1-me6w-uqfm

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-x6jw-xxpk-eufb

vulnerability	VCID-x6pd-2arc-gqdq

vulnerability	VCID-xq5h-af6j-r3fa

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-y841-wa7x-gyd4

vulnerability	VCID-yn3p-7hnq-13hv

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-za4f-bm16-j7ba

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.15.0

aliases CVE-2005-3185

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qze3-vubf-67ej

url VCID-rxqn-hx8b-4ket

vulnerability_id VCID-rxqn-hx8b-4ket

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7167.json

reference_id

reference_type

scores

value	2.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7167.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-7167

reference_id

reference_type

scores

value	0.02257
scoring_system	epss
scoring_elements	0.84873
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-7167

reference_url

https://curl.se/docs/CVE-2016-7167.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-7167.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7167
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7167

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1375906
reference_id	1375906
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1375906

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=837945
reference_id	837945
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=837945

reference_url	https://security.archlinux.org/ASA-201609-18
reference_id	ASA-201609-18
reference_type
scores
url	https://security.archlinux.org/ASA-201609-18

reference_url	https://security.archlinux.org/ASA-201609-19
reference_id	ASA-201609-19
reference_type
scores
url	https://security.archlinux.org/ASA-201609-19

reference_url

https://security.archlinux.org/AVG-20

reference_id

AVG-20

reference_type

scores

value	Low
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-20

reference_url

https://security.archlinux.org/AVG-21

reference_id

AVG-21

reference_type

scores

value	Low
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-21

reference_url	https://security.gentoo.org/glsa/201701-47
reference_id	GLSA-201701-47
reference_type
scores
url	https://security.gentoo.org/glsa/201701-47

reference_url	https://access.redhat.com/errata/RHSA-2017:2016
reference_id	RHSA-2017:2016
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2016

reference_url	https://access.redhat.com/errata/RHSA-2018:2486
reference_id	RHSA-2018:2486
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:2486

reference_url	https://usn.ubuntu.com/3123-1/
reference_id	USN-3123-1
reference_type
scores
url	https://usn.ubuntu.com/3123-1/

fixed_packages

url pkg:generic/curl.se/curl@7.50.3

purl pkg:generic/curl.se/curl@7.50.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-2x3m-p3eu-y7cn

vulnerability	VCID-3m3q-mxu4-9uhh

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-8kzz-y6n1-97cv

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-fz2p-bn31-2yha

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.50.3

aliases CVE-2016-7167

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rxqn-hx8b-4ket

url VCID-ss8u-8s2v-dkf4

vulnerability_id VCID-ss8u-8s2v-dkf4

summary curl: curl: Unauthorized access due to improper HTTP proxy connection reuse

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3784.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3784.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-3784

reference_id

reference_type

scores

value	0.00023
scoring_system	epss
scoring_elements	0.06899
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-3784

reference_url

https://curl.se/docs/CVE-2026-3784.html

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

value	Low
scoring_system	cvssv3.1
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-11T15:48:38Z/

url

https://curl.se/docs/CVE-2026-3784.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3784
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3784

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://hackerone.com/reports/3584903

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-11T15:48:38Z/

url

https://hackerone.com/reports/3584903

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2446449
reference_id	2446449
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2446449

reference_url

https://curl.se/docs/CVE-2026-3784.json

reference_id

CVE-2026-3784.json

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-11T15:48:38Z/

url

https://curl.se/docs/CVE-2026-3784.json

reference_url	https://access.redhat.com/errata/RHSA-2026:6893
reference_id	RHSA-2026:6893
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6893

reference_url	https://usn.ubuntu.com/8084-1/
reference_id	USN-8084-1
reference_type
scores
url	https://usn.ubuntu.com/8084-1/

reference_url	https://usn.ubuntu.com/8099-1/
reference_id	USN-8099-1
reference_type
scores
url	https://usn.ubuntu.com/8099-1/

fixed_packages

url pkg:generic/curl.se/curl@8.19.0

purl pkg:generic/curl.se/curl@8.19.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-5q7e-maen-9kes

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-ku14-1pmr-pbbd

vulnerability	VCID-qax6-9qcb-6yah

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.19.0

aliases CVE-2026-3784

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ss8u-8s2v-dkf4

url VCID-tcq7-bk2f-ekdh

vulnerability_id VCID-tcq7-bk2f-ekdh

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7407.json

reference_id

reference_type

scores

value	2.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7407.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-7407

reference_id

reference_type

scores

value	0.00201
scoring_system	epss
scoring_elements	0.42083
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-7407

reference_url

https://curl.se/docs/CVE-2017-7407.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2017-7407.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7407
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7407

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	1
scoring_system	cvssv2
scoring_elements	AV:L/AC:H/Au:S/C:P/I:N/A:N

value	2.4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1439190
reference_id	1439190
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1439190

reference_url

https://github.com/curl/curl/commit/1890d59905414ab84a35892b2e45833654aa5c13

reference_id

1890d59905414ab84a35892b2e45833654aa5c13

reference_type

scores

value	2.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:44:34Z/

url

https://github.com/curl/curl/commit/1890d59905414ab84a35892b2e45833654aa5c13

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859500
reference_id	859500
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859500

reference_url

https://security.gentoo.org/glsa/201709-14

reference_id

GLSA-201709-14

reference_type

scores

value	2.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:44:34Z/

url

https://security.gentoo.org/glsa/201709-14

reference_url	https://usn.ubuntu.com/3441-1/
reference_id	USN-3441-1
reference_type
scores
url	https://usn.ubuntu.com/3441-1/

reference_url	https://usn.ubuntu.com/3441-2/
reference_id	USN-3441-2
reference_type
scores
url	https://usn.ubuntu.com/3441-2/

fixed_packages

url pkg:generic/curl.se/curl@7.54.0

purl pkg:generic/curl.se/curl@7.54.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-2x3m-p3eu-y7cn

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7g7n-4tsf-2fgx

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-dmkg-yeua-uffn

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fz2p-bn31-2yha

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.54.0

aliases CVE-2017-7407

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tcq7-bk2f-ekdh

url VCID-tvwg-295p-c3c6

vulnerability_id VCID-tvwg-295p-c3c6

summary security flaw

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-4077.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-4077.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2005-4077

reference_id

reference_type

scores

value	0.00266
scoring_system	epss
scoring_elements	0.50254
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2005-4077

reference_url

https://curl.se/docs/CVE-2005-4077.html

reference_id

reference_type

scores

value	High
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2005-4077.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4077
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4077

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1617850
reference_id	1617850
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1617850

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=342339
reference_id	342339
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=342339

reference_url	https://security.gentoo.org/glsa/200512-09
reference_id	GLSA-200512-09
reference_type
scores
url	https://security.gentoo.org/glsa/200512-09

reference_url	https://security.gentoo.org/glsa/200603-25
reference_id	GLSA-200603-25
reference_type
scores
url	https://security.gentoo.org/glsa/200603-25

reference_url	https://access.redhat.com/errata/RHSA-2005:875
reference_id	RHSA-2005:875
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2005:875

reference_url	https://usn.ubuntu.com/228-1/
reference_id	USN-228-1
reference_type
scores
url	https://usn.ubuntu.com/228-1/

fixed_packages

url pkg:generic/curl.se/curl@7.15.1

purl pkg:generic/curl.se/curl@7.15.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-72pz-4qf7-xfdb

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-958x-aqdm-27br

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-a9jr-hx2n-87ch

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-b4x7-cte8-zqhu

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-b8jv-hnb7-eqfc

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-g3rz-vtae-h3cw

vulnerability	VCID-gg9j-f99e-qfgn

vulnerability	VCID-gme9-9d93-8bgk

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hg7c-ydk3-7ybq

vulnerability	VCID-jeet-9rt6-vygh

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-njfg-99cj-cfh4

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-p9gw-tfvj-xfb7

vulnerability	VCID-pgqj-25tn-akf3

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qc6p-1m1y-a3ar

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qrrf-z64u-zkck

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-vhq1-me6w-uqfm

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-x6jw-xxpk-eufb

vulnerability	VCID-x6pd-2arc-gqdq

vulnerability	VCID-xq5h-af6j-r3fa

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-y841-wa7x-gyd4

vulnerability	VCID-yn3p-7hnq-13hv

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-za4f-bm16-j7ba

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.15.1

aliases CVE-2005-4077

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tvwg-295p-c3c6

url VCID-uws8-s9se-nyay

vulnerability_id VCID-uws8-s9se-nyay

summary curl: auth/cookie leak on redirect

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-27776.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-27776.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-27776

reference_id

reference_type

scores

value	0.00682
scoring_system	epss
scoring_elements	0.71949
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-27776

reference_url

https://curl.se/docs/CVE-2022-27776.html

reference_id

reference_type

scores

value	Low
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2022-27776.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://hackerone.com/reports/1547048

reference_id

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/

url

https://hackerone.com/reports/1547048

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010252
reference_id	1010252
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010252

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2078408
reference_id	2078408
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2078408

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7N5ZBWLNNPZKFK7Q4KEHGCJ2YELQEUJP/

reference_id

7N5ZBWLNNPZKFK7Q4KEHGCJ2YELQEUJP

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7N5ZBWLNNPZKFK7Q4KEHGCJ2YELQEUJP/

reference_url

reference_id

AVG-2685

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DKKOQXPYLMBSEVDHFS32BPBR3ZQJKY5B/

reference_url

reference_id

DKKOQXPYLMBSEVDHFS32BPBR3ZQJKY5B

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DKKOQXPYLMBSEVDHFS32BPBR3ZQJKY5B/

reference_url

reference_id

dsa-5197

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/

url

reference_url

reference_id

GLSA-202212-01

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/

url

https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html

reference_url

reference_id

msg00017.html

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/

url

https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html

reference_url

https://security.netapp.com/advisory/ntap-20220609-0008/

reference_id

ntap-20220609-0008

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/

url

https://security.netapp.com/advisory/ntap-20220609-0008/

reference_url	https://access.redhat.com/errata/RHSA-2022:5245
reference_id	RHSA-2022:5245
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5245

reference_url	https://access.redhat.com/errata/RHSA-2022:5313
reference_id	RHSA-2022:5313
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5313

reference_url	https://usn.ubuntu.com/5397-1/
reference_id	USN-5397-1
reference_type
scores
url	https://usn.ubuntu.com/5397-1/

fixed_packages

url pkg:generic/curl.se/curl@7.83.0

purl pkg:generic/curl.se/curl@7.83.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-32gj-mvnb-rudh

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-4pzm-87dd-xqbs

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689c-z62z-ukc7

vulnerability	VCID-71rt-1h3a-jkcm

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e1rm-18vc-rkc2

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-frj4-zf2v-87g2

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-hsjj-6vfn-4ugt

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-ku14-1pmr-pbbd

vulnerability	VCID-kudb-x77h-1ud4

vulnerability	VCID-nhst-thye-guh2

vulnerability	VCID-nmwe-9bw8-2ud1

vulnerability	VCID-p2p1-bs19-53hd

vulnerability	VCID-p6hr-p4dr-cyh7

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qteb-88n4-5ka7

vulnerability	VCID-r1c8-6w99-kqgc

vulnerability	VCID-r4re-xx26-2kgm

vulnerability	VCID-sd8m-enmc-muhn

vulnerability	VCID-srgc-rxj3-6ydd

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-tx73-4h2v-uyb4

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-v13d-ffaa-hyd9

vulnerability	VCID-wj8v-8fnv-kqgj

vulnerability	VCID-y7c7-w2ru-gbhm

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.83.0

aliases CVE-2022-27776

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-uws8-s9se-nyay

url VCID-vhq1-me6w-uqfm

vulnerability_id VCID-vhq1-me6w-uqfm

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5420.json

reference_id

reference_type

scores

value	4.2
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5420.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-5420

reference_id

reference_type

scores

value	0.01071
scoring_system	epss
scoring_elements	0.78035
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-5420

reference_url

https://curl.se/docs/CVE-2016-5420.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-5420.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5419
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5419

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5420
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5420

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5421
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5421

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.9
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:S/C:P/I:P/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1362190
reference_id	1362190
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1362190

reference_url	https://security.gentoo.org/glsa/201701-47
reference_id	GLSA-201701-47
reference_type
scores
url	https://security.gentoo.org/glsa/201701-47

reference_url	https://access.redhat.com/errata/RHSA-2016:2575
reference_id	RHSA-2016:2575
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2575

reference_url	https://access.redhat.com/errata/RHSA-2016:2957
reference_id	RHSA-2016:2957
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2957

reference_url	https://usn.ubuntu.com/3048-1/
reference_id	USN-3048-1
reference_type
scores
url	https://usn.ubuntu.com/3048-1/

fixed_packages

url pkg:generic/curl.se/curl@7.50.1

purl pkg:generic/curl.se/curl@7.50.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-2x3m-p3eu-y7cn

vulnerability	VCID-3m3q-mxu4-9uhh

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-8kzz-y6n1-97cv

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-fz2p-bn31-2yha

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qxf1-m33c-3kbq

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.50.1

aliases CVE-2016-5420

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vhq1-me6w-uqfm

url VCID-vs5f-8tuz-b7ev

vulnerability_id VCID-vs5f-8tuz-b7ev

summary curl: FTP PWD response parser out of bounds read

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-1000254.json

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-1000254.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-1000254

reference_id

reference_type

scores

value	0.01318
scoring_system	epss
scoring_elements	0.80172
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-1000254

reference_url

https://curl.se/docs/CVE-2017-1000254.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2017-1000254.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000100
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000100

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000101
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000101

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000254
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000254

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	2.6
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:N/I:N/A:P

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1495541
reference_id	1495541
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1495541

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=877671
reference_id	877671
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=877671

reference_url	https://security.archlinux.org/ASA-201710-2
reference_id	ASA-201710-2
reference_type
scores
url	https://security.archlinux.org/ASA-201710-2

reference_url	https://security.archlinux.org/ASA-201710-3
reference_id	ASA-201710-3
reference_type
scores
url	https://security.archlinux.org/ASA-201710-3

reference_url	https://security.archlinux.org/ASA-201710-4
reference_id	ASA-201710-4
reference_type
scores
url	https://security.archlinux.org/ASA-201710-4

reference_url	https://security.archlinux.org/ASA-201710-5
reference_id	ASA-201710-5
reference_type
scores
url	https://security.archlinux.org/ASA-201710-5

reference_url	https://security.archlinux.org/ASA-201710-6
reference_id	ASA-201710-6
reference_type
scores
url	https://security.archlinux.org/ASA-201710-6

reference_url	https://security.archlinux.org/ASA-201710-7
reference_id	ASA-201710-7
reference_type
scores
url	https://security.archlinux.org/ASA-201710-7

reference_url

https://security.archlinux.org/AVG-371

reference_id

AVG-371

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-371

reference_url

https://security.archlinux.org/AVG-386

reference_id

AVG-386

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-386

reference_url

https://security.archlinux.org/AVG-387

reference_id

AVG-387

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-387

reference_url

https://security.archlinux.org/AVG-388

reference_id

AVG-388

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-388

reference_url

https://security.archlinux.org/AVG-389

reference_id

AVG-389

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-389

reference_url

https://security.archlinux.org/AVG-422

reference_id

AVG-422

reference_type

scores

value	Low
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-422

reference_url	https://security.gentoo.org/glsa/201712-04
reference_id	GLSA-201712-04
reference_type
scores
url	https://security.gentoo.org/glsa/201712-04

reference_url	https://access.redhat.com/errata/RHSA-2018:2486
reference_id	RHSA-2018:2486
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:2486

reference_url	https://usn.ubuntu.com/3441-1/
reference_id	USN-3441-1
reference_type
scores
url	https://usn.ubuntu.com/3441-1/

reference_url	https://usn.ubuntu.com/3441-2/
reference_id	USN-3441-2
reference_type
scores
url	https://usn.ubuntu.com/3441-2/

fixed_packages

url pkg:generic/curl.se/curl@7.56.0

purl pkg:generic/curl.se/curl@7.56.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-2x3m-p3eu-y7cn

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-ahjd-g791-yfhj

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-dmkg-yeua-uffn

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fz2p-bn31-2yha

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nqds-umrs-37dd

vulnerability	VCID-ntp8-1uak-t7gp

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.56.0

aliases CVE-2017-1000254

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vs5f-8tuz-b7ev

url VCID-vvsu-pcba-qfh6

vulnerability_id VCID-vvsu-pcba-qfh6

summary curl: Incorrect fix for CVE-2021-22898 TELNET stack contents disclosure

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22925.json

reference_id

reference_type

scores

value	3.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22925.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-22925

reference_id

reference_type

scores

value	0.00233
scoring_system	epss
scoring_elements	0.46202
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-22925

reference_url

https://curl.se/docs/CVE-2021-22925.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2021-22925.html

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://hackerone.com/reports/1223882

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/

url

https://hackerone.com/reports/1223882

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1970902
reference_id	1970902
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1970902

reference_url

http://seclists.org/fulldisclosure/2021/Sep/39

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/

url

http://seclists.org/fulldisclosure/2021/Sep/39

reference_url

http://seclists.org/fulldisclosure/2021/Sep/40

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/

url

http://seclists.org/fulldisclosure/2021/Sep/40

reference_url	https://security.archlinux.org/ASA-202107-59
reference_id	ASA-202107-59
reference_type
scores
url	https://security.archlinux.org/ASA-202107-59

reference_url	https://security.archlinux.org/ASA-202107-60
reference_id	ASA-202107-60
reference_type
scores
url	https://security.archlinux.org/ASA-202107-60

reference_url	https://security.archlinux.org/ASA-202107-61
reference_id	ASA-202107-61
reference_type
scores
url	https://security.archlinux.org/ASA-202107-61

reference_url	https://security.archlinux.org/ASA-202107-62
reference_id	ASA-202107-62
reference_type
scores
url	https://security.archlinux.org/ASA-202107-62

reference_url	https://security.archlinux.org/ASA-202107-63
reference_id	ASA-202107-63
reference_type
scores
url	https://security.archlinux.org/ASA-202107-63

reference_url	https://security.archlinux.org/ASA-202107-64
reference_id	ASA-202107-64
reference_type
scores
url	https://security.archlinux.org/ASA-202107-64

reference_url

reference_id

AVG-2194

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-2195

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-2196

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-2197

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-2198

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-2199

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/

reference_url

reference_id

FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/

reference_url

reference_id

GLSA-202212-01

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/

url

https://support.apple.com/kb/HT212804

reference_url

reference_id

HT212804

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/

url

https://support.apple.com/kb/HT212804

reference_url

https://support.apple.com/kb/HT212805

reference_id

HT212805

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/

url

https://support.apple.com/kb/HT212805

reference_url

https://security.netapp.com/advisory/ntap-20210902-0003/

reference_id

ntap-20210902-0003

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/

url

https://security.netapp.com/advisory/ntap-20210902-0003/

reference_url	https://access.redhat.com/errata/RHSA-2021:4511
reference_id	RHSA-2021:4511
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:4511

reference_url

https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf

reference_id

ssa-484086.pdf

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/

url

https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf

reference_url	https://usn.ubuntu.com/5021-1/
reference_id	USN-5021-1
reference_type
scores
url	https://usn.ubuntu.com/5021-1/

reference_url	https://usn.ubuntu.com/5021-2/
reference_id	USN-5021-2
reference_type
scores
url	https://usn.ubuntu.com/5021-2/

reference_url	https://usn.ubuntu.com/5894-1/
reference_id	USN-5894-1
reference_type
scores
url	https://usn.ubuntu.com/5894-1/

fixed_packages

url pkg:generic/curl.se/curl@7.78.0

purl pkg:generic/curl.se/curl@7.78.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-32gj-mvnb-rudh

vulnerability	VCID-3dn4-6jtb-kqhk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-4pzm-87dd-xqbs

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689c-z62z-ukc7

vulnerability	VCID-71rt-1h3a-jkcm

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e1rm-18vc-rkc2

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-f8uz-dv1e-kkab

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-frj4-zf2v-87g2

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-ku14-1pmr-pbbd

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-nmwe-9bw8-2ud1

vulnerability	VCID-p2p1-bs19-53hd

vulnerability	VCID-p6hr-p4dr-cyh7

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qteb-88n4-5ka7

vulnerability	VCID-r1c8-6w99-kqgc

vulnerability	VCID-r4re-xx26-2kgm

vulnerability	VCID-sd8m-enmc-muhn

vulnerability	VCID-srgc-rxj3-6ydd

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v13d-ffaa-hyd9

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-y7c7-w2ru-gbhm

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.78.0

aliases CVE-2021-22925

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vvsu-pcba-qfh6

url VCID-x6jw-xxpk-eufb

vulnerability_id VCID-x6jw-xxpk-eufb

summary curl: Improper delegation of client credentials during GSS negotiation

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2192.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2192.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-2192

reference_id

reference_type

scores

value	0.02049
scoring_system	epss
scoring_elements	0.84148
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-2192

reference_url

https://curl.se/docs/CVE-2011-2192.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2011-2192.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2192
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2192

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=631615
reference_id	631615
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=631615

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=711454
reference_id	711454
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=711454

reference_url	https://security.gentoo.org/glsa/201203-02
reference_id	GLSA-201203-02
reference_type
scores
url	https://security.gentoo.org/glsa/201203-02

reference_url	https://access.redhat.com/errata/RHSA-2011:0918
reference_id	RHSA-2011:0918
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:0918

reference_url	https://usn.ubuntu.com/1158-1/
reference_id	USN-1158-1
reference_type
scores
url	https://usn.ubuntu.com/1158-1/

fixed_packages

url pkg:generic/curl.se/curl@7.21.7

purl pkg:generic/curl.se/curl@7.21.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-2nad-8f6j-a7bz

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-72pz-4qf7-xfdb

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-958x-aqdm-27br

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a9jr-hx2n-87ch

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-b8jv-hnb7-eqfc

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-ddky-6vbe-nqc8

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-gme9-9d93-8bgk

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hg7c-ydk3-7ybq

vulnerability	VCID-hk4n-peps-yuck

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-m3hp-gvpn-4kea

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-njfg-99cj-cfh4

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-p9gw-tfvj-xfb7

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qc6p-1m1y-a3ar

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qrrf-z64u-zkck

vulnerability	VCID-qxf1-m33c-3kbq

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-snt9-bpy7-pqhd

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vhq1-me6w-uqfm

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-x6pd-2arc-gqdq

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-xq5h-af6j-r3fa

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-y841-wa7x-gyd4

vulnerability	VCID-yn3p-7hnq-13hv

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-za4f-bm16-j7ba

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.21.7

aliases CVE-2011-2192

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-x6jw-xxpk-eufb

url VCID-x6pd-2arc-gqdq

vulnerability_id VCID-x6pd-2arc-gqdq

summary HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3389.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3389.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-3389

reference_id

reference_type

scores

value	0.03832
scoring_system	epss
scoring_elements	0.88348
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-3389

reference_url

https://curl.se/docs/CVE-2011-3389.html

reference_id

reference_type

scores

value	High
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2011-3389.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=737506
reference_id	737506
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=737506

reference_url	https://security.gentoo.org/glsa/201111-02
reference_id	GLSA-201111-02
reference_type
scores
url	https://security.gentoo.org/glsa/201111-02

reference_url	https://security.gentoo.org/glsa/201203-02
reference_id	GLSA-201203-02
reference_type
scores
url	https://security.gentoo.org/glsa/201203-02

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url	https://security.gentoo.org/glsa/201406-32
reference_id	GLSA-201406-32
reference_type
scores
url	https://security.gentoo.org/glsa/201406-32

reference_url	https://access.redhat.com/errata/RHSA-2011:1380
reference_id	RHSA-2011:1380
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1380

reference_url	https://access.redhat.com/errata/RHSA-2011:1384
reference_id	RHSA-2011:1384
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1384

reference_url	https://access.redhat.com/errata/RHSA-2012:0006
reference_id	RHSA-2012:0006
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0006

reference_url	https://access.redhat.com/errata/RHSA-2012:0034
reference_id	RHSA-2012:0034
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0034

reference_url	https://access.redhat.com/errata/RHSA-2012:0343
reference_id	RHSA-2012:0343
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0343

reference_url	https://access.redhat.com/errata/RHSA-2012:0508
reference_id	RHSA-2012:0508
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0508

reference_url	https://access.redhat.com/errata/RHSA-2013:1455
reference_id	RHSA-2013:1455
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1455

reference_url	https://usn.ubuntu.com/1263-1/
reference_id	USN-1263-1
reference_type
scores
url	https://usn.ubuntu.com/1263-1/

fixed_packages

url pkg:generic/curl.se/curl@7.24.0

purl pkg:generic/curl.se/curl@7.24.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-72pz-4qf7-xfdb

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8kzz-y6n1-97cv

vulnerability	VCID-958x-aqdm-27br

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a9jr-hx2n-87ch

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-b8jv-hnb7-eqfc

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-ddky-6vbe-nqc8

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-gme9-9d93-8bgk

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hg7c-ydk3-7ybq

vulnerability	VCID-hk4n-peps-yuck

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-m3hp-gvpn-4kea

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-njfg-99cj-cfh4

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-p9gw-tfvj-xfb7

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qc6p-1m1y-a3ar

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qrrf-z64u-zkck

vulnerability	VCID-qxf1-m33c-3kbq

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-snt9-bpy7-pqhd

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vhq1-me6w-uqfm

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-xq5h-af6j-r3fa

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-y841-wa7x-gyd4

vulnerability	VCID-yn3p-7hnq-13hv

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-za4f-bm16-j7ba

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.24.0

aliases CVE-2011-3389

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-x6pd-2arc-gqdq

url VCID-xq5h-af6j-r3fa

vulnerability_id VCID-xq5h-af6j-r3fa

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5419.json

reference_id

reference_type

scores

value	4.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5419.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-5419

reference_id

reference_type

scores

value	0.01912
scoring_system	epss
scoring_elements	0.83601
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-5419

reference_url

https://curl.se/docs/CVE-2016-5419.html

reference_id

reference_type

scores

value	High
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-5419.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5419
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5419

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5420
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5420

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5421
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5421

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1362183
reference_id	1362183
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1362183

reference_url	https://security.gentoo.org/glsa/201701-47
reference_id	GLSA-201701-47
reference_type
scores
url	https://security.gentoo.org/glsa/201701-47

reference_url	https://access.redhat.com/errata/RHSA-2016:2575
reference_id	RHSA-2016:2575
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2575

reference_url	https://access.redhat.com/errata/RHSA-2016:2957
reference_id	RHSA-2016:2957
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2957

reference_url	https://usn.ubuntu.com/3048-1/
reference_id	USN-3048-1
reference_type
scores
url	https://usn.ubuntu.com/3048-1/

fixed_packages

url pkg:generic/curl.se/curl@7.50.1

purl pkg:generic/curl.se/curl@7.50.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-2x3m-p3eu-y7cn

vulnerability	VCID-3m3q-mxu4-9uhh

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-8kzz-y6n1-97cv

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-fz2p-bn31-2yha

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qxf1-m33c-3kbq

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.50.1

aliases CVE-2016-5419

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xq5h-af6j-r3fa

url VCID-y1dj-ashm-ryha

vulnerability_id VCID-y1dj-ashm-ryha

summary curl: TELNET stack contents disclosure

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22898.json

reference_id

reference_type

scores

value	3.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22898.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-22898

reference_id

reference_type

scores

value	0.00137
scoring_system	epss
scoring_elements	0.33327
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-22898

reference_url

https://curl.se/docs/CVE-2021-22898.html

reference_id

reference_type

scores

value	3.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

value	Medium
scoring_system	cvssv3.1
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/

url

https://curl.se/docs/CVE-2021-22898.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://hackerone.com/reports/1176461

reference_id

reference_type

scores

value	3.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/

url

https://hackerone.com/reports/1176461

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1964887
reference_id	1964887
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1964887

reference_url

https://github.com/curl/curl/commit/39ce47f219b09c380b81f89fe54ac586c8db6bde

reference_id

39ce47f219b09c380b81f89fe54ac586c8db6bde

reference_type

scores

value	3.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/

url

https://github.com/curl/curl/commit/39ce47f219b09c380b81f89fe54ac586c8db6bde

reference_url

http://www.openwall.com/lists/oss-security/2021/07/21/4

reference_id

reference_type

scores

value	3.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/

url

http://www.openwall.com/lists/oss-security/2021/07/21/4

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989228
reference_id	989228
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989228

reference_url	https://security.archlinux.org/ASA-202106-4
reference_id	ASA-202106-4
reference_type
scores
url	https://security.archlinux.org/ASA-202106-4

reference_url	https://security.archlinux.org/ASA-202106-5
reference_id	ASA-202106-5
reference_type
scores
url	https://security.archlinux.org/ASA-202106-5

reference_url	https://security.archlinux.org/ASA-202106-6
reference_id	ASA-202106-6
reference_type
scores
url	https://security.archlinux.org/ASA-202106-6

reference_url	https://security.archlinux.org/ASA-202106-7
reference_id	ASA-202106-7
reference_type
scores
url	https://security.archlinux.org/ASA-202106-7

reference_url	https://security.archlinux.org/ASA-202106-8
reference_id	ASA-202106-8
reference_type
scores
url	https://security.archlinux.org/ASA-202106-8

reference_url	https://security.archlinux.org/ASA-202106-9
reference_id	ASA-202106-9
reference_type
scores
url	https://security.archlinux.org/ASA-202106-9

reference_url

https://security.archlinux.org/AVG-1995

reference_id

AVG-1995

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1995

reference_url

https://security.archlinux.org/AVG-1996

reference_id

AVG-1996

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1996

reference_url

https://security.archlinux.org/AVG-1997

reference_id

AVG-1997

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1997

reference_url

https://security.archlinux.org/AVG-1998

reference_id

AVG-1998

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1998

reference_url

https://security.archlinux.org/AVG-1999

reference_id

AVG-1999

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1999

reference_url

https://security.archlinux.org/AVG-2000

reference_id

AVG-2000

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2000

reference_url

reference_id

dsa-5197

reference_type

scores

value	3.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/

reference_url

reference_id

FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V

reference_type

scores

value	3.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/

reference_url	https://security.gentoo.org/glsa/202105-36
reference_id	GLSA-202105-36
reference_type
scores
url	https://security.gentoo.org/glsa/202105-36

reference_url

https://lists.debian.org/debian-lts-announce/2021/08/msg00017.html

reference_id

msg00017.html

reference_type

scores

value	3.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/

url

https://lists.debian.org/debian-lts-announce/2021/08/msg00017.html

reference_url

https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html

reference_id

msg00017.html

reference_type

scores

value	3.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/

url

https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/POOC3UV7V6L4CJ5KA2PTWTNUV5Y72T3Q/

reference_id

POOC3UV7V6L4CJ5KA2PTWTNUV5Y72T3Q

reference_type

scores

value	3.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/POOC3UV7V6L4CJ5KA2PTWTNUV5Y72T3Q/

reference_url

https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c%40%3Cissues.guacamole.apache.org%3E

reference_id

rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c%40%3Cissues.guacamole.apache.org%3E

reference_type

scores

value	3.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/

url

https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c%40%3Cissues.guacamole.apache.org%3E

reference_url	https://access.redhat.com/errata/RHSA-2021:4511
reference_id	RHSA-2021:4511
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:4511

reference_url	https://usn.ubuntu.com/5021-1/
reference_id	USN-5021-1
reference_type
scores
url	https://usn.ubuntu.com/5021-1/

reference_url	https://usn.ubuntu.com/5021-2/
reference_id	USN-5021-2
reference_type
scores
url	https://usn.ubuntu.com/5021-2/

reference_url	https://usn.ubuntu.com/5894-1/
reference_id	USN-5894-1
reference_type
scores
url	https://usn.ubuntu.com/5894-1/

fixed_packages

url pkg:generic/curl.se/curl@7.77.0

purl pkg:generic/curl.se/curl@7.77.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-32gj-mvnb-rudh

vulnerability	VCID-3dn4-6jtb-kqhk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-4pzm-87dd-xqbs

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689c-z62z-ukc7

vulnerability	VCID-71rt-1h3a-jkcm

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e1rm-18vc-rkc2

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-f8uz-dv1e-kkab

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-frj4-zf2v-87g2

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-ku14-1pmr-pbbd

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-nmwe-9bw8-2ud1

vulnerability	VCID-p2p1-bs19-53hd

vulnerability	VCID-p6hr-p4dr-cyh7

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qteb-88n4-5ka7

vulnerability	VCID-r1c8-6w99-kqgc

vulnerability	VCID-r4re-xx26-2kgm

vulnerability	VCID-sd8m-enmc-muhn

vulnerability	VCID-srgc-rxj3-6ydd

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v13d-ffaa-hyd9

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-y7c7-w2ru-gbhm

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.77.0

aliases CVE-2021-22898

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-y1dj-ashm-ryha

url VCID-y1e8-qv34-juf8

vulnerability_id VCID-y1e8-qv34-juf8

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8617.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8617.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-8617

reference_id

reference_type

scores

value	0.00085
scoring_system	epss
scoring_elements	0.24688
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-8617

reference_url

https://curl.se/docs/CVE-2016-8617.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2016-8617.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv2
scoring_elements	AV:L/AC:H/Au:N/C:P/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

1037192

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/

url

http://www.securityfocus.com/bid/94097

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1388377
reference_id	1388377
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1388377

reference_url

reference_id

94097

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/

url

http://www.securityfocus.com/bid/94097

reference_url

https://curl.haxx.se/docs/adv_20161102C.html

reference_id

adv_20161102C.html

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/

url

https://curl.haxx.se/docs/adv_20161102C.html

reference_url	https://security.archlinux.org/ASA-201611-10
reference_id	ASA-201611-10
reference_type
scores
url	https://security.archlinux.org/ASA-201611-10

reference_url	https://security.archlinux.org/ASA-201611-4
reference_id	ASA-201611-4
reference_type
scores
url	https://security.archlinux.org/ASA-201611-4

reference_url	https://security.archlinux.org/ASA-201611-5
reference_id	ASA-201611-5
reference_type
scores
url	https://security.archlinux.org/ASA-201611-5

reference_url	https://security.archlinux.org/ASA-201611-7
reference_id	ASA-201611-7
reference_type
scores
url	https://security.archlinux.org/ASA-201611-7

reference_url	https://security.archlinux.org/ASA-201611-8
reference_id	ASA-201611-8
reference_type
scores
url	https://security.archlinux.org/ASA-201611-8

reference_url	https://security.archlinux.org/ASA-201611-9
reference_id	ASA-201611-9
reference_type
scores
url	https://security.archlinux.org/ASA-201611-9

reference_url

reference_id

AVG-60

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-61

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-62

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-63

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-65

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-66

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://curl.haxx.se/CVE-2016-8617.patch

reference_url

reference_id

CVE-2016-8617.patch

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/

url

https://curl.haxx.se/CVE-2016-8617.patch

reference_url

reference_id

GLSA-201701-47

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/

url

https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E

reference_url

reference_id

r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/

url

https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E

reference_id

rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/

url

https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E

reference_url

reference_id

RHSA-2018:2486

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8617

reference_url

reference_id

show_bug.cgi?id=CVE-2016-8617

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8617

reference_url

reference_id

tns-2016-21

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/

url

https://api.first.org/data/v1/epss?cve=CVE-2014-0015

reference_url	https://usn.ubuntu.com/3123-1/
reference_id	USN-3123-1
reference_type
scores
url	https://usn.ubuntu.com/3123-1/

fixed_packages

url pkg:generic/curl.se/curl@7.51.0

purl pkg:generic/curl.se/curl@7.51.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-2x3m-p3eu-y7cn

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-adkw-dnqu-6ffy

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ehmp-5g2e-eqfk

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-fz2p-bn31-2yha

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0

aliases CVE-2016-8617

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-y1e8-qv34-juf8

url VCID-y841-wa7x-gyd4

vulnerability_id VCID-y841-wa7x-gyd4

summary curl: re-use of wrong HTTP NTLM connection in libcurl

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0015.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0015.json

reference_url

reference_id

reference_type

scores

value	0.01266
scoring_system	epss
scoring_elements	0.79769
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-0015

reference_url

https://curl.se/docs/CVE-2014-0015.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2014-0015.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0015
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0015

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	2.1
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:S/C:P/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1053903
reference_id	1053903
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1053903

reference_url	https://access.redhat.com/errata/RHSA-2014:0561
reference_id	RHSA-2014:0561
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:0561

reference_url	https://usn.ubuntu.com/2097-1/
reference_id	USN-2097-1
reference_type
scores
url	https://usn.ubuntu.com/2097-1/

fixed_packages

url pkg:generic/curl.se/curl@7.35.0

purl pkg:generic/curl.se/curl@7.35.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-3m3q-mxu4-9uhh

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-72pz-4qf7-xfdb

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8kzz-y6n1-97cv

vulnerability	VCID-958x-aqdm-27br

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9ck1-b1zb-euad

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-b8jv-hnb7-eqfc

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-dcuk-131b-pbgp

vulnerability	VCID-ddtt-b7y9-ubgn

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-gme9-9d93-8bgk

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-m3hp-gvpn-4kea

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-njfg-99cj-cfh4

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-p9gw-tfvj-xfb7

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qc6p-1m1y-a3ar

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qrrf-z64u-zkck

vulnerability	VCID-qxf1-m33c-3kbq

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-snt9-bpy7-pqhd

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-t49y-2csd-q7c9

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uq2h-5uqp-rfbg

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v3w9-aq2q-6kdd

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vhq1-me6w-uqfm

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-xq5h-af6j-r3fa

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-yn3p-7hnq-13hv

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-za4f-bm16-j7ba

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.35.0

aliases CVE-2014-0015

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-y841-wa7x-gyd4

url VCID-yn3p-7hnq-13hv

vulnerability_id VCID-yn3p-7hnq-13hv

summary curl: re-using authenticated connection when unauthenticated

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3143.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3143.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-3143

reference_id

reference_type

scores

value	0.04659
scoring_system	epss
scoring_elements	0.8948
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-3143

reference_url

https://curl.se/docs/CVE-2015-3143.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2015-3143.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3143
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3143

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3148
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3148

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1213306
reference_id	1213306
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1213306

reference_url	https://security.gentoo.org/glsa/201509-02
reference_id	GLSA-201509-02
reference_type
scores
url	https://security.gentoo.org/glsa/201509-02

reference_url	https://access.redhat.com/errata/RHSA-2015:1254
reference_id	RHSA-2015:1254
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1254

reference_url	https://access.redhat.com/errata/RHSA-2015:2159
reference_id	RHSA-2015:2159
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2159

reference_url	https://usn.ubuntu.com/2591-1/
reference_id	USN-2591-1
reference_type
scores
url	https://usn.ubuntu.com/2591-1/

fixed_packages

url pkg:generic/curl.se/curl@7.42.0

purl pkg:generic/curl.se/curl@7.42.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cb-wnj7-13e2

vulnerability	VCID-257w-bhnj-kugq

vulnerability	VCID-2bvs-a5w1-gfhe

vulnerability	VCID-2nqm-34t9-eqcr

vulnerability	VCID-3m3q-mxu4-9uhh

vulnerability	VCID-3xnn-1yr9-4qdk

vulnerability	VCID-4563-62mm-57aq

vulnerability	VCID-46wr-p8c4-x7he

vulnerability	VCID-4nqj-8xk6-a7ha

vulnerability	VCID-58v1-7e86-skcr

vulnerability	VCID-5hb5-9gh5-kyfs

vulnerability	VCID-689h-1jnp-yfbr

vulnerability	VCID-6jpy-xpur-abc7

vulnerability	VCID-6pbt-tvzv-nqc5

vulnerability	VCID-72pz-4qf7-xfdb

vulnerability	VCID-777y-dgxh-kba5

vulnerability	VCID-7wd8-zrdf-gkc6

vulnerability	VCID-84u3-ynnu-7kct

vulnerability	VCID-8f6k-xr87-uqfz

vulnerability	VCID-8k4c-jcmk-xkdc

vulnerability	VCID-8kzz-y6n1-97cv

vulnerability	VCID-958x-aqdm-27br

vulnerability	VCID-97n5-5pa2-rqhz

vulnerability	VCID-9mnp-4p5a-ybcn

vulnerability	VCID-a2hy-wacd-37ht

vulnerability	VCID-ab48-azj9-p3hq

vulnerability	VCID-age7-hx9p-fya2

vulnerability	VCID-av4m-zmbd-1bdu

vulnerability	VCID-ay4r-g4gd-pbfh

vulnerability	VCID-b656-14j2-dbdn

vulnerability	VCID-bnr9-9qa9-vfab

vulnerability	VCID-bu5q-p482-kbd2

vulnerability	VCID-c7r3-5s6m-5ua1

vulnerability	VCID-cczp-jbr5-j3g1

vulnerability	VCID-d1pj-eqmw-9ya1

vulnerability	VCID-dvru-kxex-aqfa

vulnerability	VCID-e66v-z214-5kdt

vulnerability	VCID-e6s1-4q8v-yfdp

vulnerability	VCID-eh7z-2y2q-efbc

vulnerability	VCID-ejxm-x6yh-duam

vulnerability	VCID-estk-jscu-67cg

vulnerability	VCID-f23g-nbn2-6bac

vulnerability	VCID-fbr5-4t5f-bkaz

vulnerability	VCID-fqsr-v5rs-4ygc

vulnerability	VCID-ftpd-hkjh-6udf

vulnerability	VCID-fvrp-ctdg-kqah

vulnerability	VCID-guzm-25ur-qkgz

vulnerability	VCID-h4ad-94qh-ufhy

vulnerability	VCID-h6tz-3ztg-byhr

vulnerability	VCID-hpqq-n6y2-suf3

vulnerability	VCID-jj7m-un1g-8uan

vulnerability	VCID-jukq-4rsf-f7hb

vulnerability	VCID-k232-kks1-hygq

vulnerability	VCID-k93r-eqgb-fqgq

vulnerability	VCID-kmd7-ntaa-ffcv

vulnerability	VCID-m3hp-gvpn-4kea

vulnerability	VCID-mw8z-vyq4-5kf3

vulnerability	VCID-n38z-qhum-ffgs

vulnerability	VCID-ngrp-9xg2-g7cw

vulnerability	VCID-nuef-bv37-hfaz

vulnerability	VCID-p9gw-tfvj-xfb7

vulnerability	VCID-pru2-7vs6-ryf4

vulnerability	VCID-ptdk-wtvg-zkaw

vulnerability	VCID-qax6-9qcb-6yah

vulnerability	VCID-qj2x-z183-q7dk

vulnerability	VCID-qkp2-se93-mka8

vulnerability	VCID-qqyy-ejjy-zugp

vulnerability	VCID-qxf1-m33c-3kbq

vulnerability	VCID-rkdx-swyp-n7a2

vulnerability	VCID-rxqn-hx8b-4ket

vulnerability	VCID-ss8u-8s2v-dkf4

vulnerability	VCID-suuf-58uw-xucs

vulnerability	VCID-tcq7-bk2f-ekdh

vulnerability	VCID-tzhd-pvxj-gqfy

vulnerability	VCID-u1yn-scjj-qkc8

vulnerability	VCID-uq2h-5uqp-rfbg

vulnerability	VCID-uws8-s9se-nyay

vulnerability	VCID-v54z-4tb3-qkh2

vulnerability	VCID-vhq1-me6w-uqfm

vulnerability	VCID-vqf9-y6k7-f7bt

vulnerability	VCID-vs4f-hsgz-cyby

vulnerability	VCID-vs5f-8tuz-b7ev

vulnerability	VCID-vvsu-pcba-qfh6

vulnerability	VCID-xapd-mgwu-67b3

vulnerability	VCID-xq5h-af6j-r3fa

vulnerability	VCID-y1dj-ashm-ryha

vulnerability	VCID-y1e8-qv34-juf8

vulnerability	VCID-z46c-bshd-zuf1

vulnerability	VCID-z4n7-e83t-hucq

vulnerability	VCID-z7nt-pckd-pua8

vulnerability	VCID-za4f-bm16-j7ba

vulnerability	VCID-zgz2-mscv-sqhu

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.42.0

aliases CVE-2015-3143

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yn3p-7hnq-13hv

url VCID-z4n7-e83t-hucq

vulnerability_id VCID-z4n7-e83t-hucq

summary curl: Incorrect handling of control code characters in cookies

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-35252.json

reference_id

reference_type

scores

value	3.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-35252.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-35252

reference_id

reference_type

scores

value	0.00289
scoring_system	epss
scoring_elements	0.52523
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-35252

reference_url

https://curl.se/docs/CVE-2022-35252.html

reference_id

reference_type

scores

value	Low
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2022-35252.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35252
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35252

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://hackerone.com/reports/1613943

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/

url

https://hackerone.com/reports/1613943

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1018831
reference_id	1018831
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1018831

reference_url

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/

url

http://seclists.org/fulldisclosure/2023/Jan/21

reference_url

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/

url

http://seclists.org/fulldisclosure/2023/Jan/21

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2120718
reference_id	2120718
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2120718

reference_url

reference_id

GLSA-202212-01

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/

url

https://support.apple.com/kb/HT213603

reference_url

reference_id

HT213603

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/

url

https://support.apple.com/kb/HT213603

reference_url

reference_id

HT213604

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/

url