Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-kvmd-97y1-tbcz

Summary

Double Free
A double free vulnerability exists in libcurl <8.0.0 when sharing HSTS data between separate "handles". This sharing was introduced without considerations for do this sharing across separate threads but there was no indication of this fact in the documentation. Due to missing mutexes or thread locks, two threads sharing the same HSTS data could end up doing a double-free or use-after-free.

Aliases

alias	CVE-2023-27537

Fixed_packages

url	pkg:apk/alpine/curl@8.0.0-r0?arch=aarch64&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=aarch64&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=aarch64&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=armhf&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=armhf&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=armhf&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=armv7&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=armv7&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=armv7&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=ppc64le&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=ppc64le&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=ppc64le&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=riscv64&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=riscv64&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=riscv64&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=s390x&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=s390x&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=s390x&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=x86&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=x86&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=x86&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=x86_64&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=x86_64&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=x86_64&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=aarch64&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=aarch64&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=aarch64&distroversion=v3.18&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=armhf&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=armhf&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=armhf&distroversion=v3.18&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=armv7&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=armv7&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=armv7&distroversion=v3.18&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=ppc64le&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=ppc64le&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=ppc64le&distroversion=v3.18&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=s390x&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=s390x&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=s390x&distroversion=v3.18&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=x86&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=x86&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=x86&distroversion=v3.18&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=x86_64&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=x86_64&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=x86_64&distroversion=v3.18&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=aarch64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=aarch64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=aarch64&distroversion=edge&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=armhf&distroversion=edge&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=armhf&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=armhf&distroversion=edge&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=armv7&distroversion=edge&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=armv7&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=armv7&distroversion=edge&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=loongarch64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=loongarch64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=loongarch64&distroversion=edge&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=ppc64le&distroversion=edge&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=ppc64le&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=ppc64le&distroversion=edge&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=riscv64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=riscv64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=riscv64&distroversion=edge&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=s390x&distroversion=edge&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=s390x&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=s390x&distroversion=edge&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=x86&distroversion=edge&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=x86&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=x86&distroversion=edge&reponame=main

url	pkg:apk/alpine/curl@8.0.0-r0?arch=x86_64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/curl@8.0.0-r0?arch=x86_64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.0-r0%3Farch=x86_64&distroversion=edge&reponame=main

url	pkg:apk/alpine/curl@8.0.1-r0?arch=aarch64&distroversion=v3.15&reponame=main
purl	pkg:apk/alpine/curl@8.0.1-r0?arch=aarch64&distroversion=v3.15&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.1-r0%3Farch=aarch64&distroversion=v3.15&reponame=main

url	pkg:apk/alpine/curl@8.0.1-r0?arch=armhf&distroversion=v3.15&reponame=main
purl	pkg:apk/alpine/curl@8.0.1-r0?arch=armhf&distroversion=v3.15&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.1-r0%3Farch=armhf&distroversion=v3.15&reponame=main

url	pkg:apk/alpine/curl@8.0.1-r0?arch=armv7&distroversion=v3.15&reponame=main
purl	pkg:apk/alpine/curl@8.0.1-r0?arch=armv7&distroversion=v3.15&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.1-r0%3Farch=armv7&distroversion=v3.15&reponame=main

url	pkg:apk/alpine/curl@8.0.1-r0?arch=ppc64le&distroversion=v3.15&reponame=main
purl	pkg:apk/alpine/curl@8.0.1-r0?arch=ppc64le&distroversion=v3.15&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.1-r0%3Farch=ppc64le&distroversion=v3.15&reponame=main

url	pkg:apk/alpine/curl@8.0.1-r0?arch=s390x&distroversion=v3.15&reponame=main
purl	pkg:apk/alpine/curl@8.0.1-r0?arch=s390x&distroversion=v3.15&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.1-r0%3Farch=s390x&distroversion=v3.15&reponame=main

url	pkg:apk/alpine/curl@8.0.1-r0?arch=x86&distroversion=v3.15&reponame=main
purl	pkg:apk/alpine/curl@8.0.1-r0?arch=x86&distroversion=v3.15&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.1-r0%3Farch=x86&distroversion=v3.15&reponame=main

url	pkg:apk/alpine/curl@8.0.1-r0?arch=x86_64&distroversion=v3.15&reponame=main
purl	pkg:apk/alpine/curl@8.0.1-r0?arch=x86_64&distroversion=v3.15&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.1-r0%3Farch=x86_64&distroversion=v3.15&reponame=main

url	pkg:apk/alpine/curl@8.0.1-r0?arch=aarch64&distroversion=v3.14&reponame=main
purl	pkg:apk/alpine/curl@8.0.1-r0?arch=aarch64&distroversion=v3.14&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.1-r0%3Farch=aarch64&distroversion=v3.14&reponame=main

url	pkg:apk/alpine/curl@8.0.1-r0?arch=armhf&distroversion=v3.14&reponame=main
purl	pkg:apk/alpine/curl@8.0.1-r0?arch=armhf&distroversion=v3.14&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.1-r0%3Farch=armhf&distroversion=v3.14&reponame=main

url	pkg:apk/alpine/curl@8.0.1-r0?arch=armv7&distroversion=v3.14&reponame=main
purl	pkg:apk/alpine/curl@8.0.1-r0?arch=armv7&distroversion=v3.14&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.1-r0%3Farch=armv7&distroversion=v3.14&reponame=main

url	pkg:apk/alpine/curl@8.0.1-r0?arch=ppc64le&distroversion=v3.14&reponame=main
purl	pkg:apk/alpine/curl@8.0.1-r0?arch=ppc64le&distroversion=v3.14&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.1-r0%3Farch=ppc64le&distroversion=v3.14&reponame=main

url	pkg:apk/alpine/curl@8.0.1-r0?arch=s390x&distroversion=v3.14&reponame=main
purl	pkg:apk/alpine/curl@8.0.1-r0?arch=s390x&distroversion=v3.14&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.1-r0%3Farch=s390x&distroversion=v3.14&reponame=main

url	pkg:apk/alpine/curl@8.0.1-r0?arch=x86&distroversion=v3.14&reponame=main
purl	pkg:apk/alpine/curl@8.0.1-r0?arch=x86&distroversion=v3.14&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.1-r0%3Farch=x86&distroversion=v3.14&reponame=main

url	pkg:apk/alpine/curl@8.0.1-r0?arch=x86_64&distroversion=v3.14&reponame=main
purl	pkg:apk/alpine/curl@8.0.1-r0?arch=x86_64&distroversion=v3.14&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.0.1-r0%3Farch=x86_64&distroversion=v3.14&reponame=main

url	pkg:deb/debian/curl@0?distro=trixie
purl	pkg:deb/debian/curl@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/curl@0%3Fdistro=trixie

url pkg:deb/debian/curl@7.74.0-1.3%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/curl@7.74.0-1.3%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18p4-rvxz-pkeu

vulnerability	VCID-1dw3-33ju-jkbs

vulnerability	VCID-1m1w-rayk-sffe

vulnerability	VCID-21ff-tazv-9ud3

vulnerability	VCID-287k-bzqy-n7ag

vulnerability	VCID-39qh-jayw-g3dh

vulnerability	VCID-5un8-xymy-37bt

vulnerability	VCID-6ggz-pa5t-77c4

vulnerability	VCID-7wqd-99h2-e7hk

vulnerability	VCID-85qb-zec7-subc

vulnerability	VCID-a8z6-bswu-jue8

vulnerability	VCID-bcuq-n4vb-k7f3

vulnerability	VCID-f9nm-d5ax-qkcb

vulnerability	VCID-fcb7-8163-muf4

vulnerability	VCID-g7ux-4vz2-ckfg

vulnerability	VCID-h4nw-va5b-23ef

vulnerability	VCID-hhms-2hg6-nke9

vulnerability	VCID-ns58-vmsz-5ued

vulnerability	VCID-nwvb-d466-4uaa

vulnerability	VCID-p155-gbtu-abg1

vulnerability	VCID-secz-78pt-dben

vulnerability	VCID-ucyf-faft-33bv

vulnerability	VCID-v82t-s9e1-2fbw

vulnerability	VCID-w8ff-vxga-8qcz

vulnerability	VCID-wgur-psum-pbck

vulnerability	VCID-y44u-23he-aya8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/curl@7.74.0-1.3%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/curl@7.88.1-7?distro=trixie
purl	pkg:deb/debian/curl@7.88.1-7?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/curl@7.88.1-7%3Fdistro=trixie

url pkg:deb/debian/curl@7.88.1-10%2Bdeb12u14?distro=trixie

purl pkg:deb/debian/curl@7.88.1-10%2Bdeb12u14?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1dw3-33ju-jkbs

vulnerability	VCID-21ff-tazv-9ud3

vulnerability	VCID-39qh-jayw-g3dh

vulnerability	VCID-5un8-xymy-37bt

vulnerability	VCID-7wqd-99h2-e7hk

vulnerability	VCID-bcuq-n4vb-k7f3

vulnerability	VCID-ezve-gc2h-qyga

vulnerability	VCID-f9nm-d5ax-qkcb

vulnerability	VCID-fcb7-8163-muf4

vulnerability	VCID-g7ux-4vz2-ckfg

vulnerability	VCID-gux4-dncg-h7a6

vulnerability	VCID-hhms-2hg6-nke9

vulnerability	VCID-p155-gbtu-abg1

vulnerability	VCID-secz-78pt-dben

vulnerability	VCID-ucyf-faft-33bv

vulnerability	VCID-v82t-s9e1-2fbw

vulnerability	VCID-w8ff-vxga-8qcz

vulnerability	VCID-wgur-psum-pbck

vulnerability	VCID-y44u-23he-aya8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/curl@7.88.1-10%252Bdeb12u14%3Fdistro=trixie

url pkg:deb/debian/curl@8.14.1-2%2Bdeb13u3?distro=trixie

purl pkg:deb/debian/curl@8.14.1-2%2Bdeb13u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-21ff-tazv-9ud3

vulnerability	VCID-39qh-jayw-g3dh

vulnerability	VCID-5un8-xymy-37bt

vulnerability	VCID-7wqd-99h2-e7hk

vulnerability	VCID-bcuq-n4vb-k7f3

vulnerability	VCID-f9nm-d5ax-qkcb

vulnerability	VCID-fcb7-8163-muf4

vulnerability	VCID-fxgf-t3ue-6qhf

vulnerability	VCID-g7ux-4vz2-ckfg

vulnerability	VCID-gux4-dncg-h7a6

vulnerability	VCID-hhms-2hg6-nke9

vulnerability	VCID-p155-gbtu-abg1

vulnerability	VCID-secz-78pt-dben

vulnerability	VCID-v82t-s9e1-2fbw

vulnerability	VCID-w8ff-vxga-8qcz

vulnerability	VCID-wgur-psum-pbck

vulnerability	VCID-y44u-23he-aya8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/curl@8.14.1-2%252Bdeb13u3%3Fdistro=trixie

url	pkg:deb/debian/curl@8.20.0-2?distro=trixie
purl	pkg:deb/debian/curl@8.20.0-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/curl@8.20.0-2%3Fdistro=trixie

url	pkg:deb/debian/curl@8.20.0-5?distro=trixie
purl	pkg:deb/debian/curl@8.20.0-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/curl@8.20.0-5%3Fdistro=trixie

url	pkg:ebuild/net-misc/curl@8.3.0-r2
purl	pkg:ebuild/net-misc/curl@8.3.0-r2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/net-misc/curl@8.3.0-r2

url pkg:generic/curl.se/curl@8.0.0

purl pkg:generic/curl.se/curl@8.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1dw3-33ju-jkbs

vulnerability	VCID-21ff-tazv-9ud3

vulnerability	VCID-39qh-jayw-g3dh

vulnerability	VCID-3p2z-61gq-muhs

vulnerability	VCID-5un8-xymy-37bt

vulnerability	VCID-6en5-etsd-2bce

vulnerability	VCID-6ggz-pa5t-77c4

vulnerability	VCID-7wqd-99h2-e7hk

vulnerability	VCID-85qb-zec7-subc

vulnerability	VCID-a8z6-bswu-jue8

vulnerability	VCID-bcuq-n4vb-k7f3

vulnerability	VCID-f9nm-d5ax-qkcb

vulnerability	VCID-fcb7-8163-muf4

vulnerability	VCID-ffmg-djmk-57hn

vulnerability	VCID-g4n9-kg3s-pfcr

vulnerability	VCID-g7ux-4vz2-ckfg

vulnerability	VCID-gux4-dncg-h7a6

vulnerability	VCID-hhms-2hg6-nke9

vulnerability	VCID-jnq1-hk6d-b3a3

vulnerability	VCID-k3nv-gf9b-5ua2

vulnerability	VCID-kq38-7s5x-nqaz

vulnerability	VCID-p155-gbtu-abg1

vulnerability	VCID-razg-yr7y-ukgd

vulnerability	VCID-secz-78pt-dben

vulnerability	VCID-sutv-qt2x-2yc7

vulnerability	VCID-u1p8-s8vm-3yer

vulnerability	VCID-v82t-s9e1-2fbw

vulnerability	VCID-w472-84ep-fkdx

vulnerability	VCID-w8ff-vxga-8qcz

vulnerability	VCID-wgur-psum-pbck

vulnerability	VCID-wmam-qmmg-6uay

vulnerability	VCID-y41p-tgpa-m7cs

vulnerability	VCID-y44u-23he-aya8

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.0.0

Affected_packages

url pkg:conan/libcurl@7.88.0

purl pkg:conan/libcurl@7.88.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-kvmd-97y1-tbcz

resource_url http://public2.vulnerablecode.io/packages/pkg:conan/libcurl@7.88.0

url pkg:conan/libcurl@7.88.1

purl pkg:conan/libcurl@7.88.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1zsv-4jdy-63en

vulnerability	VCID-bx2m-n5ft-3be8

vulnerability	VCID-kvmd-97y1-tbcz

resource_url http://public2.vulnerablecode.io/packages/pkg:conan/libcurl@7.88.1

url pkg:generic/curl.se/curl@7.88.0

purl pkg:generic/curl.se/curl@7.88.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1dw3-33ju-jkbs

vulnerability	VCID-1zsv-4jdy-63en

vulnerability	VCID-21ff-tazv-9ud3

vulnerability	VCID-39qh-jayw-g3dh

vulnerability	VCID-3p2z-61gq-muhs

vulnerability	VCID-5un8-xymy-37bt

vulnerability	VCID-6en5-etsd-2bce

vulnerability	VCID-6ggz-pa5t-77c4

vulnerability	VCID-7wqd-99h2-e7hk

vulnerability	VCID-85qb-zec7-subc

vulnerability	VCID-a8z6-bswu-jue8

vulnerability	VCID-azcz-b8f2-63be

vulnerability	VCID-bcuq-n4vb-k7f3

vulnerability	VCID-bx2m-n5ft-3be8

vulnerability	VCID-f9nm-d5ax-qkcb

vulnerability	VCID-fcb7-8163-muf4

vulnerability	VCID-ffmg-djmk-57hn

vulnerability	VCID-g4n9-kg3s-pfcr

vulnerability	VCID-g7ux-4vz2-ckfg

vulnerability	VCID-gueb-wzpx-ufb2

vulnerability	VCID-gux4-dncg-h7a6

vulnerability	VCID-hhms-2hg6-nke9

vulnerability	VCID-jnq1-hk6d-b3a3

vulnerability	VCID-k3nv-gf9b-5ua2

vulnerability	VCID-kq38-7s5x-nqaz

vulnerability	VCID-kvmd-97y1-tbcz

vulnerability	VCID-p155-gbtu-abg1

vulnerability	VCID-p97a-kjpp-f3d8

vulnerability	VCID-razg-yr7y-ukgd

vulnerability	VCID-secz-78pt-dben

vulnerability	VCID-sutv-qt2x-2yc7

vulnerability	VCID-u1p8-s8vm-3yer

vulnerability	VCID-v82t-s9e1-2fbw

vulnerability	VCID-w472-84ep-fkdx

vulnerability	VCID-w8ff-vxga-8qcz

vulnerability	VCID-wgur-psum-pbck

vulnerability	VCID-wmam-qmmg-6uay

vulnerability	VCID-y41p-tgpa-m7cs

vulnerability	VCID-y44u-23he-aya8

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.88.0

url pkg:generic/curl.se/curl@7.88.1

purl pkg:generic/curl.se/curl@7.88.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1dw3-33ju-jkbs

vulnerability	VCID-1zsv-4jdy-63en

vulnerability	VCID-21ff-tazv-9ud3

vulnerability	VCID-39qh-jayw-g3dh

vulnerability	VCID-3p2z-61gq-muhs

vulnerability	VCID-5un8-xymy-37bt

vulnerability	VCID-6en5-etsd-2bce

vulnerability	VCID-6ggz-pa5t-77c4

vulnerability	VCID-7wqd-99h2-e7hk

vulnerability	VCID-85qb-zec7-subc

vulnerability	VCID-a8z6-bswu-jue8

vulnerability	VCID-azcz-b8f2-63be

vulnerability	VCID-bcuq-n4vb-k7f3

vulnerability	VCID-bx2m-n5ft-3be8

vulnerability	VCID-f9nm-d5ax-qkcb

vulnerability	VCID-fcb7-8163-muf4

vulnerability	VCID-ffmg-djmk-57hn

vulnerability	VCID-g4n9-kg3s-pfcr

vulnerability	VCID-g7ux-4vz2-ckfg

vulnerability	VCID-gueb-wzpx-ufb2

vulnerability	VCID-gux4-dncg-h7a6

vulnerability	VCID-hhms-2hg6-nke9

vulnerability	VCID-jnq1-hk6d-b3a3

vulnerability	VCID-k3nv-gf9b-5ua2

vulnerability	VCID-kq38-7s5x-nqaz

vulnerability	VCID-kvmd-97y1-tbcz

vulnerability	VCID-p155-gbtu-abg1

vulnerability	VCID-p97a-kjpp-f3d8

vulnerability	VCID-razg-yr7y-ukgd

vulnerability	VCID-secz-78pt-dben

vulnerability	VCID-sutv-qt2x-2yc7

vulnerability	VCID-u1p8-s8vm-3yer

vulnerability	VCID-v82t-s9e1-2fbw

vulnerability	VCID-w472-84ep-fkdx

vulnerability	VCID-w8ff-vxga-8qcz

vulnerability	VCID-wgur-psum-pbck

vulnerability	VCID-wmam-qmmg-6uay

vulnerability	VCID-y41p-tgpa-m7cs

vulnerability	VCID-y44u-23he-aya8

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.88.1

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-27537.json

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-27537.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-27537

reference_id

reference_type

scores

value	0.00071
scoring_system	epss
scoring_elements	0.21929
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-27537

reference_url

https://curl.se/docs/CVE-2023-27537.html

reference_id

reference_type

scores

value	Low
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2023-27537.html

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://hackerone.com/reports/1897203
reference_id
reference_type
scores
url	https://hackerone.com/reports/1897203

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2179097
reference_id	2179097
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2179097

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2023-27537
reference_id	CVE-2023-27537
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2023-27537

reference_url	https://security.gentoo.org/glsa/202310-12
reference_id	GLSA-202310-12
reference_type
scores
url	https://security.gentoo.org/glsa/202310-12

Weaknesses

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	415
name	Double Free
description	The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

Exploits

Severity_range_score 0.1 - 5.8

Exploitability 0.5

Weighted_severity 5.0

Risk_score 2.5

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kvmd-97y1-tbcz

Vulnerability Instance