Search for packages
| purl | pkg:generic/curl.se/curl@7.9.2 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-26ju-84rx-c7b9
Aliases: CVE-2017-7407 |
Multiple vulnerabilities have been found in cURL, the worst of which may allow attackers to bypass intended restrictions. |
Affected by 65 other vulnerabilities. |
|
VCID-2f5z-vxsz-yqdv
Aliases: CVE-2009-0037 |
A vulnerability in cURL may allow for arbitrary file access. |
Affected by 65 other vulnerabilities. |
|
VCID-2xmp-jc8v-bucb
Aliases: CVE-2022-35252 |
Multiple vulnerabilities have been found in curl, the worst of which could result in arbitrary code execution. |
Affected by 39 other vulnerabilities. |
|
VCID-3sy2-4f3g-zkac
Aliases: CVE-2022-27774 |
Multiple vulnerabilities have been found in curl, the worst of which could result in arbitrary code execution. |
Affected by 46 other vulnerabilities. |
|
VCID-6muy-xpdq-9kg8
Aliases: CVE-2016-8616 |
Multiple vulnerabilities have been found in cURL, the worst of which could allow remote attackers to execute arbitrary code. |
Affected by 67 other vulnerabilities. |
|
VCID-6yb7-t8qs-cbch
Aliases: CVE-2018-1000007 |
Multiple vulnerabilities have been found in cURL, the worst of which could result in a Denial of Service condition. |
Affected by 62 other vulnerabilities. |
|
VCID-7c8e-eaqy-akeu
Aliases: CVE-2015-3153 |
security update |
Affected by 85 other vulnerabilities. |
|
VCID-7xxh-66ys-4bhw
Aliases: CVE-2016-5419 |
Multiple vulnerabilities have been found in cURL, the worst of which could allow remote attackers to execute arbitrary code. |
Affected by 80 other vulnerabilities. |
|
VCID-8zks-th64-33b8
Aliases: CVE-2026-3784 |
curl: curl: Unauthorized access due to improper HTTP proxy connection reuse |
Affected by 0 other vulnerabilities. |
|
VCID-9nak-pscy-e7gs
Aliases: CVE-2022-32221 |
Multiple vulnerabilities have been found in curl, the worst of which could result in arbitrary code execution. |
Affected by 35 other vulnerabilities. |
|
VCID-ae59-w7a1-7keg
Aliases: CVE-2017-1000254 |
Multiple vulnerabilities have been found in cURL, the worst of which may allow execution of arbitrary code. |
Affected by 64 other vulnerabilities. |
|
VCID-arjz-67yz-wkg9
Aliases: CVE-2023-27533 |
Multiple vulnerabilities have been discovered in curl, the worst of which could result in arbitrary code execution. |
Affected by 26 other vulnerabilities. |
|
VCID-bvgs-71kb-mbcx
Aliases: CVE-2005-0490 |
security flaw |
Affected by 55 other vulnerabilities. |
|
VCID-dzzd-afgu-3fcy
Aliases: CVE-2014-8150 |
Multiple vulnerabilities have been found in cURL, the worst of which could allow remote attackers to execute arbitrary code. |
Affected by 88 other vulnerabilities. |
|
VCID-e58m-g37d-9fd6
Aliases: CVE-2016-8624 |
Multiple vulnerabilities have been found in cURL, the worst of which could allow remote attackers to execute arbitrary code. |
Affected by 67 other vulnerabilities. |
|
VCID-f1aq-3cj8-gfbq
Aliases: CVE-2003-1605 |
curl 7.x before 7.10.7 sends CONNECT proxy credentials to the remote server. |
Affected by 48 other vulnerabilities. |
|
VCID-fnj3-2du1-4bhx
Aliases: CVE-2016-9586 |
Multiple vulnerabilities have been found in cURL, the worst of which could allow remote attackers to execute arbitrary code. |
Affected by 68 other vulnerabilities. |
|
VCID-ggt7-eejg-xfb6
Aliases: CVE-2021-22876 |
Multiple vulnerabilities have been found in cURL, the worst of which could result in the arbitrary execution of code. |
Affected by 51 other vulnerabilities. |
|
VCID-gnx2-djyk-uyaf
Aliases: CVE-2023-38546 |
Cookie injection with none file This flaw allows an attacker to insert cookies at will into a running program using libcurl, if the specific series of conditions are met. libcurl performs transfers. In its API, an application creates "easy handles" that are the individual handles for single transfers. libcurl provides a function call that duplicates en easy handle called [curl_easy_duphandle](https://curl.se/libcurl/c/curl_easy_duphandle.html). If a transfer has cookies enabled when the handle is duplicated, the cookie-enable state is also cloned - but without cloning the actual cookies. If the source handle does not read any cookies from a specific file on disk, the cloned version of the handle would instead store the file name as `none` (using the four ASCII letters, no quotes). Subsequent use of the cloned handle that does not explicitly set a source to load cookies from would then inadvertently load cookies from a file named `none` - if such a file exists and is readable in the current directory of the program using libcurl. And if using the correct file format of course. |
Affected by 19 other vulnerabilities. |
|
VCID-hudt-78dw-tkf2
Aliases: CVE-2021-22925 |
Multiple vulnerabilities have been found in curl, the worst of which could result in arbitrary code execution. |
Affected by 48 other vulnerabilities. |
|
VCID-jeqg-g3en-5udw
Aliases: CVE-2016-5420 |
Multiple vulnerabilities have been found in cURL, the worst of which could allow remote attackers to execute arbitrary code. |
Affected by 80 other vulnerabilities. |
|
VCID-jtw4-af4y-nkbk
Aliases: CVE-2016-8619 |
Multiple vulnerabilities have been found in cURL, the worst of which could allow remote attackers to execute arbitrary code. |
Affected by 67 other vulnerabilities. |
|
VCID-ph5u-5j8n-4qah
Aliases: CVE-2021-22898 |
Multiple vulnerabilities have been found in cURL, the worst of which could result in the arbitrary execution of code. |
Affected by 53 other vulnerabilities. |
|
VCID-prff-34kh-kbat
Aliases: CVE-2013-1944 |
Multiple vulnerabilities have been found in cURL, allowing attackers to execute arbitrary code or cause Denial of Service. |
Affected by 81 other vulnerabilities. |
|
VCID-r3ny-7kn7-ukaa
Aliases: CVE-2009-2417 |
An error in the X.509 certificate handling of cURL might enable remote attackers to conduct man-in-the-middle attacks. |
Affected by 65 other vulnerabilities. |
|
VCID-r7bh-7wur-xffs
Aliases: CVE-2022-27776 |
Multiple vulnerabilities have been found in curl, the worst of which could result in arbitrary code execution. |
Affected by 46 other vulnerabilities. |
|
VCID-rmez-cwu2-2ya7
Aliases: CVE-2020-8284 |
Multiple vulnerabilities have been found in cURL, the worst of which could result in information disclosure or data loss. |
Affected by 50 other vulnerabilities. |
|
VCID-s73y-y7v7-43cm
Aliases: CVE-2023-28322 |
Multiple vulnerabilities have been discovered in curl, the worst of which could result in arbitrary code execution. |
Affected by 22 other vulnerabilities. |
|
VCID-sknq-8mm1-6qfe
Aliases: CVE-2014-3613 |
security update |
Affected by 89 other vulnerabilities. |
|
VCID-snaz-pg1h-8kew
Aliases: CVE-2016-0754 |
cURL before 7.47.0 on Windows allows attackers to write to arbitrary files in the current working directory on a different drive via a colon in a remote file name. |
Affected by 84 other vulnerabilities. |
|
VCID-vxpj-xygq-9be2
Aliases: CVE-2016-8615 |
Multiple vulnerabilities have been found in cURL, the worst of which could allow remote attackers to execute arbitrary code. |
Affected by 67 other vulnerabilities. |
|
VCID-vyk2-s5ut-ubbz
Aliases: CVE-2016-8618 |
Multiple vulnerabilities have been found in cURL, the worst of which could allow remote attackers to execute arbitrary code. |
Affected by 67 other vulnerabilities. |
|
VCID-z49y-v1gh-h7gj
Aliases: CVE-2013-2174 |
Multiple vulnerabilities have been found in cURL, allowing attackers to execute arbitrary code or cause Denial of Service. |
Affected by 83 other vulnerabilities. |
|
VCID-zxz2-xfpd-pbay
Aliases: CVE-2016-8617 |
Multiple vulnerabilities have been found in cURL, the worst of which could allow remote attackers to execute arbitrary code. |
Affected by 67 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T18:21:57.911165+00:00 | Curl Importer | Affected by | VCID-f1aq-3cj8-gfbq | https://curl.se/docs/CVE-2003-1605.json | 38.0.0 |
| 2026-04-01T18:21:57.609539+00:00 | Curl Importer | Affected by | VCID-bvgs-71kb-mbcx | https://curl.se/docs/CVE-2005-0490.json | 38.0.0 |
| 2026-04-01T18:21:57.121212+00:00 | Curl Importer | Affected by | VCID-2f5z-vxsz-yqdv | https://curl.se/docs/CVE-2009-0037.json | 38.0.0 |
| 2026-04-01T18:21:56.793039+00:00 | Curl Importer | Affected by | VCID-r3ny-7kn7-ukaa | https://curl.se/docs/CVE-2009-2417.json | 38.0.0 |
| 2026-04-01T18:21:55.665485+00:00 | Curl Importer | Affected by | VCID-prff-34kh-kbat | https://curl.se/docs/CVE-2013-1944.json | 38.0.0 |
| 2026-04-01T18:21:55.191154+00:00 | Curl Importer | Affected by | VCID-z49y-v1gh-h7gj | https://curl.se/docs/CVE-2013-2174.json | 38.0.0 |
| 2026-04-01T18:21:53.720237+00:00 | Curl Importer | Affected by | VCID-sknq-8mm1-6qfe | https://curl.se/docs/CVE-2014-3613.json | 38.0.0 |
| 2026-04-01T18:21:52.948303+00:00 | Curl Importer | Affected by | VCID-dzzd-afgu-3fcy | https://curl.se/docs/CVE-2014-8150.json | 38.0.0 |
| 2026-04-01T18:21:51.756113+00:00 | Curl Importer | Affected by | VCID-7c8e-eaqy-akeu | https://curl.se/docs/CVE-2015-3153.json | 38.0.0 |
| 2026-04-01T18:21:50.814769+00:00 | Curl Importer | Affected by | VCID-snaz-pg1h-8kew | https://curl.se/docs/CVE-2016-0754.json | 38.0.0 |
| 2026-04-01T18:21:49.605507+00:00 | Curl Importer | Affected by | VCID-jeqg-g3en-5udw | https://curl.se/docs/CVE-2016-5420.json | 38.0.0 |
| 2026-04-01T18:21:49.123301+00:00 | Curl Importer | Affected by | VCID-7xxh-66ys-4bhw | https://curl.se/docs/CVE-2016-5419.json | 38.0.0 |
| 2026-04-01T18:21:47.657503+00:00 | Curl Importer | Affected by | VCID-e58m-g37d-9fd6 | https://curl.se/docs/CVE-2016-8624.json | 38.0.0 |
| 2026-04-01T18:21:46.244232+00:00 | Curl Importer | Affected by | VCID-jtw4-af4y-nkbk | https://curl.se/docs/CVE-2016-8619.json | 38.0.0 |
| 2026-04-01T18:21:45.775464+00:00 | Curl Importer | Affected by | VCID-vyk2-s5ut-ubbz | https://curl.se/docs/CVE-2016-8618.json | 38.0.0 |
| 2026-04-01T18:21:45.233933+00:00 | Curl Importer | Affected by | VCID-zxz2-xfpd-pbay | https://curl.se/docs/CVE-2016-8617.json | 38.0.0 |
| 2026-04-01T18:21:44.828226+00:00 | Curl Importer | Affected by | VCID-6muy-xpdq-9kg8 | https://curl.se/docs/CVE-2016-8616.json | 38.0.0 |
| 2026-04-01T18:21:44.404438+00:00 | Curl Importer | Affected by | VCID-vxpj-xygq-9be2 | https://curl.se/docs/CVE-2016-8615.json | 38.0.0 |
| 2026-04-01T18:21:43.546512+00:00 | Curl Importer | Affected by | VCID-fnj3-2du1-4bhx | https://curl.se/docs/CVE-2016-9586.json | 38.0.0 |
| 2026-04-01T18:21:42.914666+00:00 | Curl Importer | Affected by | VCID-26ju-84rx-c7b9 | https://curl.se/docs/CVE-2017-7407.json | 38.0.0 |
| 2026-04-01T18:21:41.855062+00:00 | Curl Importer | Affected by | VCID-ae59-w7a1-7keg | https://curl.se/docs/CVE-2017-1000254.json | 38.0.0 |
| 2026-04-01T18:21:40.647707+00:00 | Curl Importer | Affected by | VCID-6yb7-t8qs-cbch | https://curl.se/docs/CVE-2018-1000007.json | 38.0.0 |
| 2026-04-01T18:21:35.710849+00:00 | Curl Importer | Affected by | VCID-rmez-cwu2-2ya7 | https://curl.se/docs/CVE-2020-8284.json | 38.0.0 |
| 2026-04-01T18:21:34.373761+00:00 | Curl Importer | Affected by | VCID-ggt7-eejg-xfb6 | https://curl.se/docs/CVE-2021-22876.json | 38.0.0 |
| 2026-04-01T18:21:33.558550+00:00 | Curl Importer | Affected by | VCID-ph5u-5j8n-4qah | https://curl.se/docs/CVE-2021-22898.json | 38.0.0 |
| 2026-04-01T18:21:31.782975+00:00 | Curl Importer | Affected by | VCID-hudt-78dw-tkf2 | https://curl.se/docs/CVE-2021-22925.json | 38.0.0 |
| 2026-04-01T18:21:29.730557+00:00 | Curl Importer | Affected by | VCID-3sy2-4f3g-zkac | https://curl.se/docs/CVE-2022-27774.json | 38.0.0 |
| 2026-04-01T18:21:28.865282+00:00 | Curl Importer | Affected by | VCID-r7bh-7wur-xffs | https://curl.se/docs/CVE-2022-27776.json | 38.0.0 |
| 2026-04-01T18:21:26.481827+00:00 | Curl Importer | Affected by | VCID-2xmp-jc8v-bucb | https://curl.se/docs/CVE-2022-35252.json | 38.0.0 |
| 2026-04-01T18:21:25.698142+00:00 | Curl Importer | Affected by | VCID-9nak-pscy-e7gs | https://curl.se/docs/CVE-2022-32221.json | 38.0.0 |
| 2026-04-01T18:21:24.013878+00:00 | Curl Importer | Affected by | VCID-arjz-67yz-wkg9 | https://curl.se/docs/CVE-2023-27533.json | 38.0.0 |
| 2026-04-01T18:21:20.442312+00:00 | Curl Importer | Affected by | VCID-s73y-y7v7-43cm | https://curl.se/docs/CVE-2023-28322.json | 38.0.0 |
| 2026-04-01T18:21:19.557735+00:00 | Curl Importer | Affected by | VCID-gnx2-djyk-uyaf | https://curl.se/docs/CVE-2023-38546.json | 38.0.0 |
| 2026-04-01T18:21:12.650518+00:00 | Curl Importer | Affected by | VCID-8zks-th64-33b8 | https://curl.se/docs/CVE-2026-3784.json | 38.0.0 |