{"url":"http://public2.vulnerablecode.io/api/packages/376310?format=json","purl":"pkg:generic/curl.se/curl@7.12.2","type":"generic","namespace":"curl.se","name":"curl","version":"7.12.2","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"8.20.0","latest_non_vulnerable_version":"8.20.0","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/57034?format=json","vulnerability_id":"VCID-257w-bhnj-kugq","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8615.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8615.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8615","reference_id":"","reference_type":"","scores":[{"value":"0.04293","scoring_system":"epss","scoring_elements":"0.89034","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8615"},{"reference_url":"https://curl.se/docs/CVE-2016-8615.html","reference_id":"","reference_type":"","scores":[{"value":"High","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2016-8615.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"http://www.securitytracker.com/id/1037192","reference_id":"1037192","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/"}],"url":"http://www.securitytracker.com/id/1037192"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1388370","reference_id":"1388370","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1388370"},{"reference_url":"http://www.securityfocus.com/bid/94096","reference_id":"94096","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/"}],"url":"http://www.securityfocus.com/bid/94096"},{"reference_url":"https://curl.haxx.se/docs/adv_20161102A.html","reference_id":"adv_20161102A.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/"}],"url":"https://curl.haxx.se/docs/adv_20161102A.html"},{"reference_url":"https://security.archlinux.org/ASA-201611-10","reference_id":"ASA-201611-10","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-10"},{"reference_url":"https://security.archlinux.org/ASA-201611-4","reference_id":"ASA-201611-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-4"},{"reference_url":"https://security.archlinux.org/ASA-201611-5","reference_id":"ASA-201611-5","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-5"},{"reference_url":"https://security.archlinux.org/ASA-201611-7","reference_id":"ASA-201611-7","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-7"},{"reference_url":"https://security.archlinux.org/ASA-201611-8","reference_id":"ASA-201611-8","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-8"},{"reference_url":"https://security.archlinux.org/ASA-201611-9","reference_id":"ASA-201611-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-9"},{"reference_url":"https://security.archlinux.org/AVG-60","reference_id":"AVG-60","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-60"},{"reference_url":"https://security.archlinux.org/AVG-61","reference_id":"AVG-61","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-61"},{"reference_url":"https://security.archlinux.org/AVG-62","reference_id":"AVG-62","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-62"},{"reference_url":"https://security.archlinux.org/AVG-63","reference_id":"AVG-63","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-63"},{"reference_url":"https://security.archlinux.org/AVG-65","reference_id":"AVG-65","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-65"},{"reference_url":"https://security.archlinux.org/AVG-66","reference_id":"AVG-66","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-66"},{"reference_url":"https://curl.haxx.se/CVE-2016-8615.patch","reference_id":"CVE-2016-8615.patch","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/"}],"url":"https://curl.haxx.se/CVE-2016-8615.patch"},{"reference_url":"https://security.gentoo.org/glsa/201701-47","reference_id":"GLSA-201701-47","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/"}],"url":"https://security.gentoo.org/glsa/201701-47"},{"reference_url":"https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E","reference_id":"r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/"}],"url":"https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E","reference_id":"rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/"}],"url":"https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2486","reference_id":"RHSA-2018:2486","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/"}],"url":"https://access.redhat.com/errata/RHSA-2018:2486"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8615","reference_id":"show_bug.cgi?id=CVE-2016-8615","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8615"},{"reference_url":"https://www.tenable.com/security/tns-2016-21","reference_id":"tns-2016-21","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/"}],"url":"https://www.tenable.com/security/tns-2016-21"},{"reference_url":"https://usn.ubuntu.com/3123-1/","reference_id":"USN-3123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3123-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376389?format=json","purl":"pkg:generic/curl.se/curl@7.51.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-2x3m-p3eu-y7cn"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-fz2p-bn31-2yha"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0"}],"aliases":["CVE-2016-8615"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-257w-bhnj-kugq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76951?format=json","vulnerability_id":"VCID-2v93-gqe1-xqd8","summary":"security flaw","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-0490.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-0490.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-0490","reference_id":"","reference_type":"","scores":[{"value":"0.02576","scoring_system":"epss","scoring_elements":"0.85804","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-0490"},{"reference_url":"https://curl.se/docs/CVE-2005-0490.html","reference_id":"","reference_type":"","scores":[{"value":"High","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2005-0490.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0490","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0490"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617532","reference_id":"1617532","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617532"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:340","reference_id":"RHSA-2005:340","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:340"},{"reference_url":"https://usn.ubuntu.com/86-1/","reference_id":"USN-86-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/86-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376313?format=json","purl":"pkg:generic/curl.se/curl@7.13.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-72pz-4qf7-xfdb"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-958x-aqdm-27br"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-a9jr-hx2n-87ch"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-b8jv-hnb7-eqfc"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-g3rz-vtae-h3cw"},{"vulnerability":"VCID-gme9-9d93-8bgk"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hg7c-ydk3-7ybq"},{"vulnerability":"VCID-jeet-9rt6-vygh"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-njfg-99cj-cfh4"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-p9gw-tfvj-xfb7"},{"vulnerability":"VCID-pgqj-25tn-akf3"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qc6p-1m1y-a3ar"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qrrf-z64u-zkck"},{"vulnerability":"VCID-qze3-vubf-67ej"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tvwg-295p-c3c6"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-x6jw-xxpk-eufb"},{"vulnerability":"VCID-x6pd-2arc-gqdq"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-y841-wa7x-gyd4"},{"vulnerability":"VCID-yn3p-7hnq-13hv"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-za4f-bm16-j7ba"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.13.1"}],"aliases":["CVE-2005-0490"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2v93-gqe1-xqd8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/39116?format=json","vulnerability_id":"VCID-4563-62mm-57aq","summary":"curl: TELNET option IAC injection","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-27533.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-27533.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-27533","reference_id":"","reference_type":"","scores":[{"value":"0.00179","scoring_system":"epss","scoring_elements":"0.39186","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-27533"},{"reference_url":"https://curl.se/docs/CVE-2023-27533.html","reference_id":"","reference_type":"","scores":[{"value":"Low","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2023-27533.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27533"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://hackerone.com/reports/1891474","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T20:09:15Z/"}],"url":"https://hackerone.com/reports/1891474"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2179062","reference_id":"2179062","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2179062"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/36NBD5YLJXXEDZLDGNFCERWRYJQ6LAQW/","reference_id":"36NBD5YLJXXEDZLDGNFCERWRYJQ6LAQW","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T20:09:15Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/36NBD5YLJXXEDZLDGNFCERWRYJQ6LAQW/"},{"reference_url":"https://security.gentoo.org/glsa/202310-12","reference_id":"GLSA-202310-12","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T20:09:15Z/"}],"url":"https://security.gentoo.org/glsa/202310-12"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/04/msg00025.html","reference_id":"msg00025.html","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T20:09:15Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/04/msg00025.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20230420-0011/","reference_id":"ntap-20230420-0011","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T20:09:15Z/"}],"url":"https://security.netapp.com/advisory/ntap-20230420-0011/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3354","reference_id":"RHSA-2023:3354","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3354"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3355","reference_id":"RHSA-2023:3355","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3355"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6679","reference_id":"RHSA-2023:6679","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6679"},{"reference_url":"https://usn.ubuntu.com/5964-1/","reference_id":"USN-5964-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5964-1/"},{"reference_url":"https://usn.ubuntu.com/5964-2/","reference_id":"USN-5964-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5964-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376443?format=json","purl":"pkg:generic/curl.se/curl@8.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-32gj-mvnb-rudh"},{"vulnerability":"VCID-4pzm-87dd-xqbs"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-5jsn-ubxh-fqe4"},{"vulnerability":"VCID-5stq-jajr-57hv"},{"vulnerability":"VCID-689c-z62z-ukc7"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-ku14-1pmr-pbbd"},{"vulnerability":"VCID-nhst-thye-guh2"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qteb-88n4-5ka7"},{"vulnerability":"VCID-r1c8-6w99-kqgc"},{"vulnerability":"VCID-r4re-xx26-2kgm"},{"vulnerability":"VCID-sd8m-enmc-muhn"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-ujr4-yect-subh"},{"vulnerability":"VCID-x47y-r42c-bkfk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.0.0"}],"aliases":["CVE-2023-27533"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4563-62mm-57aq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/57029?format=json","vulnerability_id":"VCID-46wr-p8c4-x7he","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8618.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8618.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8618","reference_id":"","reference_type":"","scores":[{"value":"0.01811","scoring_system":"epss","scoring_elements":"0.83146","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8618"},{"reference_url":"https://curl.se/docs/CVE-2016-8618.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2016-8618.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.1","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:N/C:P/I:P/A:P"},{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1388378","reference_id":"1388378","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1388378"},{"reference_url":"https://security.archlinux.org/ASA-201611-10","reference_id":"ASA-201611-10","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-10"},{"reference_url":"https://security.archlinux.org/ASA-201611-4","reference_id":"ASA-201611-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-4"},{"reference_url":"https://security.archlinux.org/ASA-201611-5","reference_id":"ASA-201611-5","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-5"},{"reference_url":"https://security.archlinux.org/AVG-61","reference_id":"AVG-61","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-61"},{"reference_url":"https://security.archlinux.org/AVG-63","reference_id":"AVG-63","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-63"},{"reference_url":"https://security.archlinux.org/AVG-66","reference_id":"AVG-66","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-66"},{"reference_url":"https://security.gentoo.org/glsa/201701-47","reference_id":"GLSA-201701-47","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201701-47"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2486","reference_id":"RHSA-2018:2486","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2486"},{"reference_url":"https://usn.ubuntu.com/3123-1/","reference_id":"USN-3123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3123-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376389?format=json","purl":"pkg:generic/curl.se/curl@7.51.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-2x3m-p3eu-y7cn"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-fz2p-bn31-2yha"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0"}],"aliases":["CVE-2016-8618"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-46wr-p8c4-x7he"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/40782?format=json","vulnerability_id":"VCID-4nqj-8xk6-a7ha","summary":"curl: POST following PUT confusion","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-32221.json","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-32221.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-32221","reference_id":"","reference_type":"","scores":[{"value":"0.01759","scoring_system":"epss","scoring_elements":"0.82916","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-32221"},{"reference_url":"https://curl.se/docs/CVE-2022-32221.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2022-32221.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32221","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32221"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-43552","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-43552"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://hackerone.com/reports/1704017","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/"}],"url":"https://hackerone.com/reports/1704017"},{"reference_url":"http://seclists.org/fulldisclosure/2023/Jan/19","reference_id":"19","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/"}],"url":"http://seclists.org/fulldisclosure/2023/Jan/19"},{"reference_url":"http://seclists.org/fulldisclosure/2023/Jan/20","reference_id":"20","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/"}],"url":"http://seclists.org/fulldisclosure/2023/Jan/20"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2135411","reference_id":"2135411","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2135411"},{"reference_url":"http://www.openwall.com/lists/oss-security/2023/05/17/4","reference_id":"4","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/"}],"url":"http://www.openwall.com/lists/oss-security/2023/05/17/4"},{"reference_url":"https://www.debian.org/security/2023/dsa-5330","reference_id":"dsa-5330","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/"}],"url":"https://www.debian.org/security/2023/dsa-5330"},{"reference_url":"https://security.gentoo.org/glsa/202212-01","reference_id":"GLSA-202212-01","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/"}],"url":"https://security.gentoo.org/glsa/202212-01"},{"reference_url":"https://support.apple.com/kb/HT213604","reference_id":"HT213604","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/"}],"url":"https://support.apple.com/kb/HT213604"},{"reference_url":"https://support.apple.com/kb/HT213605","reference_id":"HT213605","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/"}],"url":"https://support.apple.com/kb/HT213605"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html","reference_id":"msg00028.html","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20230110-0006/","reference_id":"ntap-20230110-0006","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/"}],"url":"https://security.netapp.com/advisory/ntap-20230110-0006/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20230208-0002/","reference_id":"ntap-20230208-0002","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/"}],"url":"https://security.netapp.com/advisory/ntap-20230208-0002/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8840","reference_id":"RHSA-2022:8840","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8840"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8841","reference_id":"RHSA-2022:8841","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8841"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0333","reference_id":"RHSA-2023:0333","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0333"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4139","reference_id":"RHSA-2023:4139","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4139"},{"reference_url":"https://usn.ubuntu.com/5702-1/","reference_id":"USN-5702-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5702-1/"},{"reference_url":"https://usn.ubuntu.com/5702-2/","reference_id":"USN-5702-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5702-2/"},{"reference_url":"https://usn.ubuntu.com/5823-1/","reference_id":"USN-5823-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5823-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376439?format=json","purl":"pkg:generic/curl.se/curl@7.86.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-32gj-mvnb-rudh"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4pzm-87dd-xqbs"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-5jsn-ubxh-fqe4"},{"vulnerability":"VCID-5stq-jajr-57hv"},{"vulnerability":"VCID-689c-z62z-ukc7"},{"vulnerability":"VCID-71rt-1h3a-jkcm"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-frj4-zf2v-87g2"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-ku14-1pmr-pbbd"},{"vulnerability":"VCID-nhst-thye-guh2"},{"vulnerability":"VCID-nmwe-9bw8-2ud1"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qteb-88n4-5ka7"},{"vulnerability":"VCID-r1c8-6w99-kqgc"},{"vulnerability":"VCID-r4re-xx26-2kgm"},{"vulnerability":"VCID-sd8m-enmc-muhn"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-ujr4-yect-subh"},{"vulnerability":"VCID-v13d-ffaa-hyd9"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.86.0"}],"aliases":["CVE-2022-32221"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4nqj-8xk6-a7ha"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/57705?format=json","vulnerability_id":"VCID-6jpy-xpur-abc7","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8621.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8621.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8621","reference_id":"","reference_type":"","scores":[{"value":"0.03165","scoring_system":"epss","scoring_elements":"0.87146","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8621"},{"reference_url":"https://curl.se/docs/CVE-2016-8621.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2016-8621.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:P"},{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"http://www.securitytracker.com/id/1037192","reference_id":"1037192","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/"}],"url":"http://www.securitytracker.com/id/1037192"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1388385","reference_id":"1388385","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1388385"},{"reference_url":"http://www.securityfocus.com/bid/94101","reference_id":"94101","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/"}],"url":"http://www.securityfocus.com/bid/94101"},{"reference_url":"https://curl.haxx.se/docs/adv_20161102G.html","reference_id":"adv_20161102G.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/"}],"url":"https://curl.haxx.se/docs/adv_20161102G.html"},{"reference_url":"https://security.archlinux.org/ASA-201611-10","reference_id":"ASA-201611-10","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-10"},{"reference_url":"https://security.archlinux.org/ASA-201611-4","reference_id":"ASA-201611-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-4"},{"reference_url":"https://security.archlinux.org/ASA-201611-5","reference_id":"ASA-201611-5","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-5"},{"reference_url":"https://security.archlinux.org/ASA-201611-7","reference_id":"ASA-201611-7","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-7"},{"reference_url":"https://security.archlinux.org/ASA-201611-8","reference_id":"ASA-201611-8","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-8"},{"reference_url":"https://security.archlinux.org/ASA-201611-9","reference_id":"ASA-201611-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-9"},{"reference_url":"https://security.archlinux.org/AVG-60","reference_id":"AVG-60","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-60"},{"reference_url":"https://security.archlinux.org/AVG-61","reference_id":"AVG-61","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-61"},{"reference_url":"https://security.archlinux.org/AVG-62","reference_id":"AVG-62","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-62"},{"reference_url":"https://security.archlinux.org/AVG-63","reference_id":"AVG-63","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-63"},{"reference_url":"https://security.archlinux.org/AVG-65","reference_id":"AVG-65","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-65"},{"reference_url":"https://security.archlinux.org/AVG-66","reference_id":"AVG-66","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-66"},{"reference_url":"https://curl.haxx.se/CVE-2016-8621.patch","reference_id":"CVE-2016-8621.patch","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/"}],"url":"https://curl.haxx.se/CVE-2016-8621.patch"},{"reference_url":"https://security.gentoo.org/glsa/201701-47","reference_id":"GLSA-201701-47","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/"}],"url":"https://security.gentoo.org/glsa/201701-47"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2486","reference_id":"RHSA-2018:2486","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/"}],"url":"https://access.redhat.com/errata/RHSA-2018:2486"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8621","reference_id":"show_bug.cgi?id=CVE-2016-8621","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8621"},{"reference_url":"https://www.tenable.com/security/tns-2016-21","reference_id":"tns-2016-21","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/"}],"url":"https://www.tenable.com/security/tns-2016-21"},{"reference_url":"https://usn.ubuntu.com/3123-1/","reference_id":"USN-3123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3123-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376389?format=json","purl":"pkg:generic/curl.se/curl@7.51.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-2x3m-p3eu-y7cn"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-fz2p-bn31-2yha"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0"}],"aliases":["CVE-2016-8621"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6jpy-xpur-abc7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/53860?format=json","vulnerability_id":"VCID-6pbt-tvzv-nqc5","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8616.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8616.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8616","reference_id":"","reference_type":"","scores":[{"value":"0.0419","scoring_system":"epss","scoring_elements":"0.889","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8616"},{"reference_url":"https://curl.se/docs/CVE-2016-8616.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2016-8616.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"1.9","scoring_system":"cvssv2","scoring_elements":"AV:L/AC:M/Au:N/C:P/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1388371","reference_id":"1388371","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1388371"},{"reference_url":"https://security.archlinux.org/ASA-201611-10","reference_id":"ASA-201611-10","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-10"},{"reference_url":"https://security.archlinux.org/ASA-201611-4","reference_id":"ASA-201611-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-4"},{"reference_url":"https://security.archlinux.org/ASA-201611-5","reference_id":"ASA-201611-5","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-5"},{"reference_url":"https://security.archlinux.org/ASA-201611-7","reference_id":"ASA-201611-7","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-7"},{"reference_url":"https://security.archlinux.org/ASA-201611-8","reference_id":"ASA-201611-8","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-8"},{"reference_url":"https://security.archlinux.org/ASA-201611-9","reference_id":"ASA-201611-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-9"},{"reference_url":"https://security.archlinux.org/AVG-60","reference_id":"AVG-60","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-60"},{"reference_url":"https://security.archlinux.org/AVG-61","reference_id":"AVG-61","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-61"},{"reference_url":"https://security.archlinux.org/AVG-62","reference_id":"AVG-62","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-62"},{"reference_url":"https://security.archlinux.org/AVG-63","reference_id":"AVG-63","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-63"},{"reference_url":"https://security.archlinux.org/AVG-65","reference_id":"AVG-65","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-65"},{"reference_url":"https://security.archlinux.org/AVG-66","reference_id":"AVG-66","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-66"},{"reference_url":"https://security.gentoo.org/glsa/201701-47","reference_id":"GLSA-201701-47","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201701-47"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2486","reference_id":"RHSA-2018:2486","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2486"},{"reference_url":"https://usn.ubuntu.com/3123-1/","reference_id":"USN-3123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3123-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376389?format=json","purl":"pkg:generic/curl.se/curl@7.51.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-2x3m-p3eu-y7cn"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-fz2p-bn31-2yha"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0"}],"aliases":["CVE-2016-8616"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6pbt-tvzv-nqc5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/89897?format=json","vulnerability_id":"VCID-72pz-4qf7-xfdb","summary":"Multiple untrusted search path vulnerabilities in cURL and libcurl before 7.49.1, when built with SSPI or telnet is enabled, allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) security.dll, (2) secur32.dll, or (3) ws2_32.dll in the application or current working directory.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-4802","reference_id":"","reference_type":"","scores":[{"value":"0.00612","scoring_system":"epss","scoring_elements":"0.70137","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-4802"},{"reference_url":"https://curl.se/docs/CVE-2016-4802.html","reference_id":"","reference_type":"","scores":[{"value":"High","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2016-4802.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376384?format=json","purl":"pkg:generic/curl.se/curl@7.49.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-2x3m-p3eu-y7cn"},{"vulnerability":"VCID-3m3q-mxu4-9uhh"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-8kzz-y6n1-97cv"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-fz2p-bn31-2yha"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qxf1-m33c-3kbq"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uq2h-5uqp-rfbg"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.49.1"}],"aliases":["CVE-2016-4802"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-72pz-4qf7-xfdb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/38508?format=json","vulnerability_id":"VCID-7wd8-zrdf-gkc6","summary":"curl: more POST-after-PUT confusion","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28322.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28322.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-28322","reference_id":"","reference_type":"","scores":[{"value":"0.00631","scoring_system":"epss","scoring_elements":"0.7063","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-28322"},{"reference_url":"https://curl.se/docs/CVE-2023-28322.html","reference_id":"","reference_type":"","scores":[{"value":"Low","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2023-28322.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28322"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://hackerone.com/reports/1954658","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/"}],"url":"https://hackerone.com/reports/1954658"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036239","reference_id":"1036239","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036239"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2196793","reference_id":"2196793","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2196793"},{"reference_url":"http://seclists.org/fulldisclosure/2023/Jul/47","reference_id":"47","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/"}],"url":"http://seclists.org/fulldisclosure/2023/Jul/47"},{"reference_url":"http://seclists.org/fulldisclosure/2023/Jul/48","reference_id":"48","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/"}],"url":"http://seclists.org/fulldisclosure/2023/Jul/48"},{"reference_url":"http://seclists.org/fulldisclosure/2023/Jul/52","reference_id":"52","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/"}],"url":"http://seclists.org/fulldisclosure/2023/Jul/52"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F4I75RDGX5ULSSCBE5BF3P5I5SFO7ULQ/","reference_id":"F4I75RDGX5ULSSCBE5BF3P5I5SFO7ULQ","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F4I75RDGX5ULSSCBE5BF3P5I5SFO7ULQ/"},{"reference_url":"https://security.gentoo.org/glsa/202310-12","reference_id":"GLSA-202310-12","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/"}],"url":"https://security.gentoo.org/glsa/202310-12"},{"reference_url":"https://support.apple.com/kb/HT213843","reference_id":"HT213843","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/"}],"url":"https://support.apple.com/kb/HT213843"},{"reference_url":"https://support.apple.com/kb/HT213844","reference_id":"HT213844","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/"}],"url":"https://support.apple.com/kb/HT213844"},{"reference_url":"https://support.apple.com/kb/HT213845","reference_id":"HT213845","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/"}],"url":"https://support.apple.com/kb/HT213845"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/12/msg00015.html","reference_id":"msg00015.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/12/msg00015.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20230609-0009/","reference_id":"ntap-20230609-0009","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/"}],"url":"https://security.netapp.com/advisory/ntap-20230609-0009/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4354","reference_id":"RHSA-2023:4354","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4354"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4628","reference_id":"RHSA-2023:4628","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4628"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4629","reference_id":"RHSA-2023:4629","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4629"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5598","reference_id":"RHSA-2023:5598","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5598"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0428","reference_id":"RHSA-2024:0428","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0428"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0585","reference_id":"RHSA-2024:0585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0585"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:1601","reference_id":"RHSA-2024:1601","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:1601"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2092","reference_id":"RHSA-2024:2092","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2092"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2093","reference_id":"RHSA-2024:2093","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2093"},{"reference_url":"https://usn.ubuntu.com/6237-1/","reference_id":"USN-6237-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6237-1/"},{"reference_url":"https://usn.ubuntu.com/6237-3/","reference_id":"USN-6237-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6237-3/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z2LIWHWKOVH24COGGBCVOWDXXIUPKOMK/","reference_id":"Z2LIWHWKOVH24COGGBCVOWDXXIUPKOMK","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z2LIWHWKOVH24COGGBCVOWDXXIUPKOMK/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376445?format=json","purl":"pkg:generic/curl.se/curl@8.1.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-32gj-mvnb-rudh"},{"vulnerability":"VCID-4pzm-87dd-xqbs"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-5jsn-ubxh-fqe4"},{"vulnerability":"VCID-5stq-jajr-57hv"},{"vulnerability":"VCID-689c-z62z-ukc7"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-ku14-1pmr-pbbd"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qteb-88n4-5ka7"},{"vulnerability":"VCID-r1c8-6w99-kqgc"},{"vulnerability":"VCID-r4re-xx26-2kgm"},{"vulnerability":"VCID-sd8m-enmc-muhn"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-ujr4-yect-subh"},{"vulnerability":"VCID-x47y-r42c-bkfk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.1.0"}],"aliases":["CVE-2023-28322"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7wd8-zrdf-gkc6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/89895?format=json","vulnerability_id":"VCID-958x-aqdm-27br","summary":"cURL before 7.47.0 on Windows allows attackers to write to arbitrary files in the current working directory on a different drive via a colon in a remote file name.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-0754","reference_id":"","reference_type":"","scores":[{"value":"0.00351","scoring_system":"epss","scoring_elements":"0.57741","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-0754"},{"reference_url":"https://curl.se/docs/CVE-2016-0754.html","reference_id":"","reference_type":"","scores":[{"value":"High","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2016-0754.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376380?format=json","purl":"pkg:generic/curl.se/curl@7.47.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-2x3m-p3eu-y7cn"},{"vulnerability":"VCID-3m3q-mxu4-9uhh"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-72pz-4qf7-xfdb"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-8kzz-y6n1-97cv"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-m3hp-gvpn-4kea"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qxf1-m33c-3kbq"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uq2h-5uqp-rfbg"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.47.0"}],"aliases":["CVE-2016-0754"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-958x-aqdm-27br"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/36936?format=json","vulnerability_id":"VCID-97n5-5pa2-rqhz","summary":"curl: cookie injection with none file","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38546.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38546.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-38546","reference_id":"","reference_type":"","scores":[{"value":"0.00441","scoring_system":"epss","scoring_elements":"0.63492","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-38546"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38545","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38545"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38546","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38546"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://hackerone.com/reports/2148242","reference_id":"","reference_type":"","scores":[],"url":"https://hackerone.com/reports/2148242"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2241938","reference_id":"2241938","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2241938"},{"reference_url":"http://seclists.org/fulldisclosure/2024/Jan/34","reference_id":"34","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/"}],"url":"http://seclists.org/fulldisclosure/2024/Jan/34"},{"reference_url":"http://seclists.org/fulldisclosure/2024/Jan/37","reference_id":"37","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/"}],"url":"http://seclists.org/fulldisclosure/2024/Jan/37"},{"reference_url":"http://seclists.org/fulldisclosure/2024/Jan/38","reference_id":"38","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/"}],"url":"http://seclists.org/fulldisclosure/2024/Jan/38"},{"reference_url":"https://security.archlinux.org/AVG-2845","reference_id":"AVG-2845","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2845"},{"reference_url":"https://security.archlinux.org/AVG-2846","reference_id":"AVG-2846","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2846"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-38546","reference_id":"CVE-2023-38546","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-38546"},{"reference_url":"https://curl.se/docs/CVE-2023-38546.html","reference_id":"CVE-2023-38546.HTML","reference_type":"","scores":[{"value":"Low","scoring_system":"cvssv3.1","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/"}],"url":"https://curl.se/docs/CVE-2023-38546.html"},{"reference_url":"https://security.gentoo.org/glsa/202310-12","reference_id":"GLSA-202310-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202310-12"},{"reference_url":"https://support.apple.com/kb/HT214036","reference_id":"HT214036","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/"}],"url":"https://support.apple.com/kb/HT214036"},{"reference_url":"https://support.apple.com/kb/HT214057","reference_id":"HT214057","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/"}],"url":"https://support.apple.com/kb/HT214057"},{"reference_url":"https://support.apple.com/kb/HT214058","reference_id":"HT214058","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/"}],"url":"https://support.apple.com/kb/HT214058"},{"reference_url":"https://support.apple.com/kb/HT214063","reference_id":"HT214063","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/"}],"url":"https://support.apple.com/kb/HT214063"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OGMXNRNSJ4ETDK6FRNU3J7SABXPWCHSQ/","reference_id":"OGMXNRNSJ4ETDK6FRNU3J7SABXPWCHSQ","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OGMXNRNSJ4ETDK6FRNU3J7SABXPWCHSQ/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5700","reference_id":"RHSA-2023:5700","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5700"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5763","reference_id":"RHSA-2023:5763","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5763"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6292","reference_id":"RHSA-2023:6292","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6292"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6745","reference_id":"RHSA-2023:6745","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6745"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7540","reference_id":"RHSA-2023:7540","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7540"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7625","reference_id":"RHSA-2023:7625","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7625"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7626","reference_id":"RHSA-2023:7626","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7626"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:1601","reference_id":"RHSA-2024:1601","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:1601"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2092","reference_id":"RHSA-2024:2092","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2092"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2093","reference_id":"RHSA-2024:2093","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2093"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2101","reference_id":"RHSA-2024:2101","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2101"},{"reference_url":"https://usn.ubuntu.com/6429-1/","reference_id":"USN-6429-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6429-1/"},{"reference_url":"https://usn.ubuntu.com/6429-2/","reference_id":"USN-6429-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6429-2/"},{"reference_url":"https://usn.ubuntu.com/6429-3/","reference_id":"USN-6429-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6429-3/"},{"reference_url":"https://forum.vmssoftware.com/viewtopic.php?f=8&t=8868","reference_id":"viewtopic.php?f=8&t=8868","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/"}],"url":"https://forum.vmssoftware.com/viewtopic.php?f=8&t=8868"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376451?format=json","purl":"pkg:generic/curl.se/curl@8.4.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-32gj-mvnb-rudh"},{"vulnerability":"VCID-4pzm-87dd-xqbs"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-5jsn-ubxh-fqe4"},{"vulnerability":"VCID-689c-z62z-ukc7"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-ku14-1pmr-pbbd"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qteb-88n4-5ka7"},{"vulnerability":"VCID-r1c8-6w99-kqgc"},{"vulnerability":"VCID-r4re-xx26-2kgm"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-ujr4-yect-subh"},{"vulnerability":"VCID-x47y-r42c-bkfk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.4.0"}],"aliases":["CVE-2023-38546"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-97n5-5pa2-rqhz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/69659?format=json","vulnerability_id":"VCID-a9jr-hx2n-87ch","summary":"curl: Loop counter error, leading to heap-based buffer overflow when decoding certain URLs","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2174.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2174.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2174","reference_id":"","reference_type":"","scores":[{"value":"0.03181","scoring_system":"epss","scoring_elements":"0.8718","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2174"},{"reference_url":"https://curl.se/docs/CVE-2013-2174.html","reference_id":"","reference_type":"","scores":[{"value":"High","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2013-2174.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2174","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2174"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=965640","reference_id":"965640","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=965640"},{"reference_url":"https://security.gentoo.org/glsa/201401-14","reference_id":"GLSA-201401-14","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-14"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0983","reference_id":"RHSA-2013:0983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0983"},{"reference_url":"https://usn.ubuntu.com/1894-1/","reference_id":"USN-1894-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1894-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376362?format=json","purl":"pkg:generic/curl.se/curl@7.31.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-72pz-4qf7-xfdb"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8kzz-y6n1-97cv"},{"vulnerability":"VCID-958x-aqdm-27br"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9ck1-b1zb-euad"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-b8jv-hnb7-eqfc"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-dcuk-131b-pbgp"},{"vulnerability":"VCID-ddky-6vbe-nqc8"},{"vulnerability":"VCID-ddtt-b7y9-ubgn"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-gme9-9d93-8bgk"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hk4n-peps-yuck"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-m3hp-gvpn-4kea"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-njfg-99cj-cfh4"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-p9gw-tfvj-xfb7"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qc6p-1m1y-a3ar"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qrrf-z64u-zkck"},{"vulnerability":"VCID-qxf1-m33c-3kbq"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-snt9-bpy7-pqhd"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-t49y-2csd-q7c9"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v3w9-aq2q-6kdd"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-y841-wa7x-gyd4"},{"vulnerability":"VCID-yn3p-7hnq-13hv"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-za4f-bm16-j7ba"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.31.0"}],"aliases":["CVE-2013-2174"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a9jr-hx2n-87ch"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/8130?format=json","vulnerability_id":"VCID-ab48-azj9-p3hq","summary":"curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-1965.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-1965.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-1965","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22163","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-1965"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1965","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1965"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2446448","reference_id":"2446448","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2446448"},{"reference_url":"https://curl.se/docs/CVE-2026-1965.html","reference_id":"CVE-2026-1965.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"},{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-11T14:31:56Z/"}],"url":"https://curl.se/docs/CVE-2026-1965.html"},{"reference_url":"https://curl.se/docs/CVE-2026-1965.json","reference_id":"CVE-2026-1965.json","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-11T14:31:56Z/"}],"url":"https://curl.se/docs/CVE-2026-1965.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6893","reference_id":"RHSA-2026:6893","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6893"},{"reference_url":"https://usn.ubuntu.com/8084-1/","reference_id":"USN-8084-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8084-1/"},{"reference_url":"https://usn.ubuntu.com/8099-1/","reference_id":"USN-8099-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8099-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376472?format=json","purl":"pkg:generic/curl.se/curl@8.19.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-5q7e-maen-9kes"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-ku14-1pmr-pbbd"},{"vulnerability":"VCID-qax6-9qcb-6yah"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.19.0"}],"aliases":["CVE-2026-1965"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ab48-azj9-p3hq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/55716?format=json","vulnerability_id":"VCID-b656-14j2-dbdn","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8624.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8624.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8624","reference_id":"","reference_type":"","scores":[{"value":"0.01363","scoring_system":"epss","scoring_elements":"0.80482","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8624"},{"reference_url":"https://curl.se/docs/CVE-2016-8624.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2016-8624.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"http://www.securitytracker.com/id/1037192","reference_id":"1037192","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/"}],"url":"http://www.securitytracker.com/id/1037192"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1388390","reference_id":"1388390","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1388390"},{"reference_url":"http://www.securityfocus.com/bid/94103","reference_id":"94103","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/"}],"url":"http://www.securityfocus.com/bid/94103"},{"reference_url":"https://curl.haxx.se/docs/adv_20161102J.html","reference_id":"adv_20161102J.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/"}],"url":"https://curl.haxx.se/docs/adv_20161102J.html"},{"reference_url":"https://security.archlinux.org/ASA-201611-10","reference_id":"ASA-201611-10","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-10"},{"reference_url":"https://security.archlinux.org/ASA-201611-4","reference_id":"ASA-201611-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-4"},{"reference_url":"https://security.archlinux.org/ASA-201611-5","reference_id":"ASA-201611-5","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-5"},{"reference_url":"https://security.archlinux.org/ASA-201611-7","reference_id":"ASA-201611-7","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-7"},{"reference_url":"https://security.archlinux.org/ASA-201611-8","reference_id":"ASA-201611-8","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-8"},{"reference_url":"https://security.archlinux.org/ASA-201611-9","reference_id":"ASA-201611-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-9"},{"reference_url":"https://security.archlinux.org/AVG-60","reference_id":"AVG-60","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-60"},{"reference_url":"https://security.archlinux.org/AVG-61","reference_id":"AVG-61","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-61"},{"reference_url":"https://security.archlinux.org/AVG-62","reference_id":"AVG-62","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-62"},{"reference_url":"https://security.archlinux.org/AVG-63","reference_id":"AVG-63","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-63"},{"reference_url":"https://security.archlinux.org/AVG-65","reference_id":"AVG-65","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-65"},{"reference_url":"https://security.archlinux.org/AVG-66","reference_id":"AVG-66","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-66"},{"reference_url":"https://security.gentoo.org/glsa/201701-47","reference_id":"GLSA-201701-47","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/"}],"url":"https://security.gentoo.org/glsa/201701-47"},{"reference_url":"https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E","reference_id":"r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/"}],"url":"https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E","reference_id":"rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/"}],"url":"https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rfaa4d578587f52a9c4d176af516a681a712c664e3be440a4163691d5%40%3Ccommits.pulsar.apache.org%3E","reference_id":"rfaa4d578587f52a9c4d176af516a681a712c664e3be440a4163691d5%40%3Ccommits.pulsar.apache.org%3E","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/"}],"url":"https://lists.apache.org/thread.html/rfaa4d578587f52a9c4d176af516a681a712c664e3be440a4163691d5%40%3Ccommits.pulsar.apache.org%3E"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2486","reference_id":"RHSA-2018:2486","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/"}],"url":"https://access.redhat.com/errata/RHSA-2018:2486"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8624","reference_id":"show_bug.cgi?id=CVE-2016-8624","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8624"},{"reference_url":"https://www.tenable.com/security/tns-2016-21","reference_id":"tns-2016-21","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/"}],"url":"https://www.tenable.com/security/tns-2016-21"},{"reference_url":"https://usn.ubuntu.com/3123-1/","reference_id":"USN-3123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3123-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376389?format=json","purl":"pkg:generic/curl.se/curl@7.51.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-2x3m-p3eu-y7cn"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-fz2p-bn31-2yha"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0"}],"aliases":["CVE-2016-8624"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b656-14j2-dbdn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/68416?format=json","vulnerability_id":"VCID-b8jv-hnb7-eqfc","summary":"curl: incorrect handling of IP addresses in cookie domain","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3613.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3613.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3613","reference_id":"","reference_type":"","scores":[{"value":"0.0182","scoring_system":"epss","scoring_elements":"0.83179","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3613"},{"reference_url":"https://curl.se/docs/CVE-2014-3613.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2014-3613.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3613","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3613"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1136154","reference_id":"1136154","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1136154"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:1254","reference_id":"RHSA-2015:1254","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:1254"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:2159","reference_id":"RHSA-2015:2159","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:2159"},{"reference_url":"https://usn.ubuntu.com/2346-1/","reference_id":"USN-2346-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2346-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376370?format=json","purl":"pkg:generic/curl.se/curl@7.38.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-3m3q-mxu4-9uhh"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-72pz-4qf7-xfdb"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8kzz-y6n1-97cv"},{"vulnerability":"VCID-958x-aqdm-27br"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-bzpr-8cw4-zkd6"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-dcuk-131b-pbgp"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-m3hp-gvpn-4kea"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-p9gw-tfvj-xfb7"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qc6p-1m1y-a3ar"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qrrf-z64u-zkck"},{"vulnerability":"VCID-qxf1-m33c-3kbq"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-snt9-bpy7-pqhd"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-t49y-2csd-q7c9"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uq2h-5uqp-rfbg"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-yn3p-7hnq-13hv"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-za4f-bm16-j7ba"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.38.0"}],"aliases":["CVE-2014-3613"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b8jv-hnb7-eqfc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/61056?format=json","vulnerability_id":"VCID-bu5q-p482-kbd2","summary":"curl: HTTP authentication leak in redirects","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1000007.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1000007.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1000007","reference_id":"","reference_type":"","scores":[{"value":"0.03854","scoring_system":"epss","scoring_elements":"0.88402","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1000007"},{"reference_url":"https://curl.se/docs/CVE-2018-1000007.html","reference_id":"","reference_type":"","scores":[{"value":"Low","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2018-1000007.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000007","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000007"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1537125","reference_id":"1537125","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1537125"},{"reference_url":"https://security.archlinux.org/ASA-201801-20","reference_id":"ASA-201801-20","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201801-20"},{"reference_url":"https://security.archlinux.org/ASA-201801-22","reference_id":"ASA-201801-22","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201801-22"},{"reference_url":"https://security.archlinux.org/ASA-201801-23","reference_id":"ASA-201801-23","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201801-23"},{"reference_url":"https://security.archlinux.org/ASA-201801-24","reference_id":"ASA-201801-24","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201801-24"},{"reference_url":"https://security.archlinux.org/ASA-201801-25","reference_id":"ASA-201801-25","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201801-25"},{"reference_url":"https://security.archlinux.org/ASA-201801-26","reference_id":"ASA-201801-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201801-26"},{"reference_url":"https://security.archlinux.org/AVG-593","reference_id":"AVG-593","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-593"},{"reference_url":"https://security.archlinux.org/AVG-594","reference_id":"AVG-594","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-594"},{"reference_url":"https://security.archlinux.org/AVG-595","reference_id":"AVG-595","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-595"},{"reference_url":"https://security.archlinux.org/AVG-596","reference_id":"AVG-596","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-596"},{"reference_url":"https://security.archlinux.org/AVG-597","reference_id":"AVG-597","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-597"},{"reference_url":"https://security.archlinux.org/AVG-598","reference_id":"AVG-598","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-598"},{"reference_url":"https://security.gentoo.org/glsa/201804-04","reference_id":"GLSA-201804-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201804-04"},{"reference_url":"https://usn.ubuntu.com/3554-1/","reference_id":"USN-3554-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3554-1/"},{"reference_url":"https://usn.ubuntu.com/3554-2/","reference_id":"USN-3554-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3554-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376401?format=json","purl":"pkg:generic/curl.se/curl@7.58.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2x3m-p3eu-y7cn"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-dmkg-yeua-uffn"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nqds-umrs-37dd"},{"vulnerability":"VCID-ntp8-1uak-t7gp"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qteb-88n4-5ka7"},{"vulnerability":"VCID-r4re-xx26-2kgm"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v13d-ffaa-hyd9"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y7c7-w2ru-gbhm"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.58.0"}],"aliases":["CVE-2018-1000007"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bu5q-p482-kbd2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/25979?format=json","vulnerability_id":"VCID-c7r3-5s6m-5ua1","summary":"libcurl: Buffer Overflow in libcurl via zlib Integer Overflow","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0725.json","reference_id":"","reference_type":"","scores":[{"value":"4.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0725.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-0725","reference_id":"","reference_type":"","scores":[{"value":"0.006","scoring_system":"epss","scoring_elements":"0.69765","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-0725"},{"reference_url":"https://curl.se/docs/CVE-2025-0725.html","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"Low","scoring_system":"cvssv3.1","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-05T14:33:50Z/"}],"url":"https://curl.se/docs/CVE-2025-0725.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0725","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0725"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://hackerone.com/reports/2956023","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-05T14:33:50Z/"}],"url":"https://hackerone.com/reports/2956023"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2343899","reference_id":"2343899","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2343899"},{"reference_url":"https://curl.se/docs/CVE-2025-0725.json","reference_id":"CVE-2025-0725.json","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-05T14:33:50Z/"}],"url":"https://curl.se/docs/CVE-2025-0725.json"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376463?format=json","purl":"pkg:generic/curl.se/curl@8.12.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-4pzm-87dd-xqbs"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-eu8a-mzse-zfhy"},{"vulnerability":"VCID-g6cd-5nuc-73bx"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-ku14-1pmr-pbbd"},{"vulnerability":"VCID-ncpq-4ws5-eyh2"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qteb-88n4-5ka7"},{"vulnerability":"VCID-r4re-xx26-2kgm"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-x47y-r42c-bkfk"},{"vulnerability":"VCID-zssk-1ump-a3hh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.12.0"}],"aliases":["CVE-2025-0725"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c7r3-5s6m-5ua1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/55793?format=json","vulnerability_id":"VCID-d1pj-eqmw-9ya1","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8619.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8619.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8619","reference_id":"","reference_type":"","scores":[{"value":"0.03078","scoring_system":"epss","scoring_elements":"0.86989","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8619"},{"reference_url":"https://curl.se/docs/CVE-2016-8619.html","reference_id":"","reference_type":"","scores":[{"value":"High","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2016-8619.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1388379","reference_id":"1388379","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1388379"},{"reference_url":"https://security.archlinux.org/ASA-201611-10","reference_id":"ASA-201611-10","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-10"},{"reference_url":"https://security.archlinux.org/ASA-201611-4","reference_id":"ASA-201611-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-4"},{"reference_url":"https://security.archlinux.org/ASA-201611-5","reference_id":"ASA-201611-5","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-5"},{"reference_url":"https://security.archlinux.org/ASA-201611-7","reference_id":"ASA-201611-7","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-7"},{"reference_url":"https://security.archlinux.org/ASA-201611-8","reference_id":"ASA-201611-8","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-8"},{"reference_url":"https://security.archlinux.org/ASA-201611-9","reference_id":"ASA-201611-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-9"},{"reference_url":"https://security.archlinux.org/AVG-60","reference_id":"AVG-60","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-60"},{"reference_url":"https://security.archlinux.org/AVG-61","reference_id":"AVG-61","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-61"},{"reference_url":"https://security.archlinux.org/AVG-62","reference_id":"AVG-62","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-62"},{"reference_url":"https://security.archlinux.org/AVG-63","reference_id":"AVG-63","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-63"},{"reference_url":"https://security.archlinux.org/AVG-65","reference_id":"AVG-65","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-65"},{"reference_url":"https://security.archlinux.org/AVG-66","reference_id":"AVG-66","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-66"},{"reference_url":"https://security.gentoo.org/glsa/201701-47","reference_id":"GLSA-201701-47","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201701-47"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2486","reference_id":"RHSA-2018:2486","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2486"},{"reference_url":"https://usn.ubuntu.com/3123-1/","reference_id":"USN-3123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3123-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376389?format=json","purl":"pkg:generic/curl.se/curl@7.51.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-2x3m-p3eu-y7cn"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-fz2p-bn31-2yha"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0"}],"aliases":["CVE-2016-8619"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d1pj-eqmw-9ya1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/56358?format=json","vulnerability_id":"VCID-f23g-nbn2-6bac","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8623.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8623.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8623","reference_id":"","reference_type":"","scores":[{"value":"0.01171","scoring_system":"epss","scoring_elements":"0.78987","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8623"},{"reference_url":"https://curl.se/docs/CVE-2016-8623.html","reference_id":"","reference_type":"","scores":[{"value":"High","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2016-8623.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"2.6","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:N/C:P/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"http://www.securitytracker.com/id/1037192","reference_id":"1037192","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/"}],"url":"http://www.securitytracker.com/id/1037192"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1388388","reference_id":"1388388","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1388388"},{"reference_url":"http://www.securityfocus.com/bid/94106","reference_id":"94106","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/"}],"url":"http://www.securityfocus.com/bid/94106"},{"reference_url":"https://curl.haxx.se/docs/adv_20161102I.html","reference_id":"adv_20161102I.html","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/"}],"url":"https://curl.haxx.se/docs/adv_20161102I.html"},{"reference_url":"https://security.archlinux.org/ASA-201611-10","reference_id":"ASA-201611-10","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-10"},{"reference_url":"https://security.archlinux.org/ASA-201611-4","reference_id":"ASA-201611-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-4"},{"reference_url":"https://security.archlinux.org/ASA-201611-5","reference_id":"ASA-201611-5","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-5"},{"reference_url":"https://security.archlinux.org/ASA-201611-7","reference_id":"ASA-201611-7","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-7"},{"reference_url":"https://security.archlinux.org/ASA-201611-8","reference_id":"ASA-201611-8","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-8"},{"reference_url":"https://security.archlinux.org/ASA-201611-9","reference_id":"ASA-201611-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-9"},{"reference_url":"https://security.archlinux.org/AVG-60","reference_id":"AVG-60","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-60"},{"reference_url":"https://security.archlinux.org/AVG-61","reference_id":"AVG-61","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-61"},{"reference_url":"https://security.archlinux.org/AVG-62","reference_id":"AVG-62","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-62"},{"reference_url":"https://security.archlinux.org/AVG-63","reference_id":"AVG-63","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-63"},{"reference_url":"https://security.archlinux.org/AVG-65","reference_id":"AVG-65","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-65"},{"reference_url":"https://security.archlinux.org/AVG-66","reference_id":"AVG-66","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-66"},{"reference_url":"https://curl.haxx.se/CVE-2016-8623.patch","reference_id":"CVE-2016-8623.patch","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/"}],"url":"https://curl.haxx.se/CVE-2016-8623.patch"},{"reference_url":"https://security.gentoo.org/glsa/201701-47","reference_id":"GLSA-201701-47","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/"}],"url":"https://security.gentoo.org/glsa/201701-47"},{"reference_url":"https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E","reference_id":"r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/"}],"url":"https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E","reference_id":"rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/"}],"url":"https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2486","reference_id":"RHSA-2018:2486","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/"}],"url":"https://access.redhat.com/errata/RHSA-2018:2486"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8623","reference_id":"show_bug.cgi?id=CVE-2016-8623","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8623"},{"reference_url":"https://www.tenable.com/security/tns-2016-21","reference_id":"tns-2016-21","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/"}],"url":"https://www.tenable.com/security/tns-2016-21"},{"reference_url":"https://usn.ubuntu.com/3123-1/","reference_id":"USN-3123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3123-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376389?format=json","purl":"pkg:generic/curl.se/curl@7.51.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-2x3m-p3eu-y7cn"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-fz2p-bn31-2yha"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0"}],"aliases":["CVE-2016-8623"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f23g-nbn2-6bac"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58415?format=json","vulnerability_id":"VCID-fbr5-4t5f-bkaz","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8625.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8625.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8625","reference_id":"","reference_type":"","scores":[{"value":"0.01549","scoring_system":"epss","scoring_elements":"0.8171","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8625"},{"reference_url":"https://curl.se/docs/CVE-2016-8625.html","reference_id":"","reference_type":"","scores":[{"value":"High","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2016-8625.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8625","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8625"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:N/C:P/I:P/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1388392","reference_id":"1388392","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1388392"},{"reference_url":"https://security.archlinux.org/ASA-201611-10","reference_id":"ASA-201611-10","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-10"},{"reference_url":"https://security.archlinux.org/ASA-201611-4","reference_id":"ASA-201611-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-4"},{"reference_url":"https://security.archlinux.org/ASA-201611-5","reference_id":"ASA-201611-5","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-5"},{"reference_url":"https://security.archlinux.org/ASA-201611-7","reference_id":"ASA-201611-7","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-7"},{"reference_url":"https://security.archlinux.org/ASA-201611-8","reference_id":"ASA-201611-8","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-8"},{"reference_url":"https://security.archlinux.org/ASA-201611-9","reference_id":"ASA-201611-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-9"},{"reference_url":"https://security.archlinux.org/AVG-60","reference_id":"AVG-60","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-60"},{"reference_url":"https://security.archlinux.org/AVG-61","reference_id":"AVG-61","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-61"},{"reference_url":"https://security.archlinux.org/AVG-62","reference_id":"AVG-62","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-62"},{"reference_url":"https://security.archlinux.org/AVG-63","reference_id":"AVG-63","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-63"},{"reference_url":"https://security.archlinux.org/AVG-65","reference_id":"AVG-65","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-65"},{"reference_url":"https://security.archlinux.org/AVG-66","reference_id":"AVG-66","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-66"},{"reference_url":"https://security.gentoo.org/glsa/201701-47","reference_id":"GLSA-201701-47","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201701-47"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2486","reference_id":"RHSA-2018:2486","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2486"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376389?format=json","purl":"pkg:generic/curl.se/curl@7.51.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-2x3m-p3eu-y7cn"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-fz2p-bn31-2yha"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0"}],"aliases":["CVE-2016-8625"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fbr5-4t5f-bkaz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/45577?format=json","vulnerability_id":"VCID-ftpd-hkjh-6udf","summary":"curl: Leak of authentication credentials in URL via automatic Referer","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22876.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22876.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22876","reference_id":"","reference_type":"","scores":[{"value":"0.00115","scoring_system":"epss","scoring_elements":"0.29911","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22876"},{"reference_url":"https://curl.se/docs/CVE-2021-22876.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Low","scoring_system":"cvssv3.1","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/"}],"url":"https://curl.se/docs/CVE-2021-22876.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8169","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8169"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8177","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8177"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8231","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8231"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8284","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8284"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8285","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8285"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8286","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8286"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22876","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22876"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22890","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22890"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://hackerone.com/reports/1101882","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/"}],"url":"https://hackerone.com/reports/1101882"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1941964","reference_id":"1941964","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1941964"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ZC5BMIOKLBQJSFCHEDN2G2C2SH274BP/","reference_id":"2ZC5BMIOKLBQJSFCHEDN2G2C2SH274BP","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ZC5BMIOKLBQJSFCHEDN2G2C2SH274BP/"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986269","reference_id":"986269","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986269"},{"reference_url":"https://security.archlinux.org/AVG-1753","reference_id":"AVG-1753","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1753"},{"reference_url":"https://security.archlinux.org/AVG-1754","reference_id":"AVG-1754","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1754"},{"reference_url":"https://security.archlinux.org/AVG-1755","reference_id":"AVG-1755","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1755"},{"reference_url":"https://security.archlinux.org/AVG-1756","reference_id":"AVG-1756","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1756"},{"reference_url":"https://security.archlinux.org/AVG-1757","reference_id":"AVG-1757","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1757"},{"reference_url":"https://security.archlinux.org/AVG-1758","reference_id":"AVG-1758","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1758"},{"reference_url":"https://security.gentoo.org/glsa/202105-36","reference_id":"GLSA-202105-36","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/"}],"url":"https://security.gentoo.org/glsa/202105-36"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ITVWPVGLFISU5BJC2BXBRYSDXTXE2YGC/","reference_id":"ITVWPVGLFISU5BJC2BXBRYSDXTXE2YGC","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ITVWPVGLFISU5BJC2BXBRYSDXTXE2YGC/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KQUIOYX2KUU6FIUZVB5WWZ6JHSSYSQWJ/","reference_id":"KQUIOYX2KUU6FIUZVB5WWZ6JHSSYSQWJ","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KQUIOYX2KUU6FIUZVB5WWZ6JHSSYSQWJ/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/05/msg00019.html","reference_id":"msg00019.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/05/msg00019.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20210521-0007/","reference_id":"ntap-20210521-0007","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/"}],"url":"https://security.netapp.com/advisory/ntap-20210521-0007/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2471","reference_id":"RHSA-2021:2471","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2471"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2472","reference_id":"RHSA-2021:2472","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2472"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4511","reference_id":"RHSA-2021:4511","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4511"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1354","reference_id":"RHSA-2022:1354","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1354"},{"reference_url":"https://usn.ubuntu.com/4898-1/","reference_id":"USN-4898-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4898-1/"},{"reference_url":"https://usn.ubuntu.com/4903-1/","reference_id":"USN-4903-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4903-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376426?format=json","purl":"pkg:generic/curl.se/curl@7.76.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-32gj-mvnb-rudh"},{"vulnerability":"VCID-3dn4-6jtb-kqhk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-4pzm-87dd-xqbs"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-62br-m3wt-gqdm"},{"vulnerability":"VCID-689c-z62z-ukc7"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-cgpy-5qpn-dkb8"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-f8uz-dv1e-kkab"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-ku14-1pmr-pbbd"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-p2p1-bs19-53hd"},{"vulnerability":"VCID-p6hr-p4dr-cyh7"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qteb-88n4-5ka7"},{"vulnerability":"VCID-r1c8-6w99-kqgc"},{"vulnerability":"VCID-r4re-xx26-2kgm"},{"vulnerability":"VCID-sd8m-enmc-muhn"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v13d-ffaa-hyd9"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y7c7-w2ru-gbhm"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.76.0"}],"aliases":["CVE-2021-22876"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ftpd-hkjh-6udf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59261?format=json","vulnerability_id":"VCID-fvrp-ctdg-kqah","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9586.json","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9586.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9586","reference_id":"","reference_type":"","scores":[{"value":"0.01009","scoring_system":"epss","scoring_elements":"0.77381","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9586"},{"reference_url":"https://curl.se/docs/CVE-2016-9586.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2016-9586.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9586","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9586"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"1.2","scoring_system":"cvssv2","scoring_elements":"AV:L/AC:H/Au:N/C:N/I:N/A:P"},{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"http://www.securitytracker.com/id/1037515","reference_id":"1037515","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/"}],"url":"http://www.securitytracker.com/id/1037515"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1406712","reference_id":"1406712","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1406712"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=848958","reference_id":"848958","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=848958"},{"reference_url":"http://www.securityfocus.com/bid/95019","reference_id":"95019","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/"}],"url":"http://www.securityfocus.com/bid/95019"},{"reference_url":"https://curl.haxx.se/docs/adv_20161221A.html","reference_id":"adv_20161221A.html","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/"}],"url":"https://curl.haxx.se/docs/adv_20161221A.html"},{"reference_url":"https://security.archlinux.org/ASA-201612-22","reference_id":"ASA-201612-22","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201612-22"},{"reference_url":"https://security.archlinux.org/ASA-201701-10","reference_id":"ASA-201701-10","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-10"},{"reference_url":"https://security.archlinux.org/ASA-201701-11","reference_id":"ASA-201701-11","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-11"},{"reference_url":"https://security.archlinux.org/ASA-201701-7","reference_id":"ASA-201701-7","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-7"},{"reference_url":"https://security.archlinux.org/ASA-201701-8","reference_id":"ASA-201701-8","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-8"},{"reference_url":"https://security.archlinux.org/ASA-201701-9","reference_id":"ASA-201701-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-9"},{"reference_url":"https://security.archlinux.org/AVG-112","reference_id":"AVG-112","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-112"},{"reference_url":"https://security.archlinux.org/AVG-113","reference_id":"AVG-113","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-113"},{"reference_url":"https://security.archlinux.org/AVG-114","reference_id":"AVG-114","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-114"},{"reference_url":"https://security.archlinux.org/AVG-115","reference_id":"AVG-115","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-115"},{"reference_url":"https://security.archlinux.org/AVG-116","reference_id":"AVG-116","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-116"},{"reference_url":"https://security.archlinux.org/AVG-117","reference_id":"AVG-117","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-117"},{"reference_url":"https://github.com/curl/curl/commit/curl-7_51_0-162-g3ab3c16","reference_id":"curl-7_51_0-162-g3ab3c16","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/"}],"url":"https://github.com/curl/curl/commit/curl-7_51_0-162-g3ab3c16"},{"reference_url":"https://security.gentoo.org/glsa/201701-47","reference_id":"GLSA-201701-47","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/"}],"url":"https://security.gentoo.org/glsa/201701-47"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2018/11/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2018/11/msg00005.html"},{"reference_url":"https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E","reference_id":"r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/"}],"url":"https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E","reference_id":"rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/"}],"url":"https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-9586","reference_id":"show_bug.cgi?id=CVE-2016-9586","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-9586"},{"reference_url":"https://usn.ubuntu.com/3441-1/","reference_id":"USN-3441-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3441-1/"},{"reference_url":"https://usn.ubuntu.com/3441-2/","reference_id":"USN-3441-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3441-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376390?format=json","purl":"pkg:generic/curl.se/curl@7.52.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-1pa1-5qav-tfa9"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-2x3m-p3eu-y7cn"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-dmkg-yeua-uffn"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e2km-m1ta-6kes"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fz2p-bn31-2yha"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jtdd-1117-5qfz"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.52.0"}],"aliases":["CVE-2016-9586"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fvrp-ctdg-kqah"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/74111?format=json","vulnerability_id":"VCID-g3rz-vtae-h3cw","summary":"curl: incorrect verification of SSL certificate with NUL in name","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2417.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2417.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-2417","reference_id":"","reference_type":"","scores":[{"value":"0.0733","scoring_system":"epss","scoring_elements":"0.91809","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-2417"},{"reference_url":"https://curl.se/docs/CVE-2009-2417.html","reference_id":"","reference_type":"","scores":[{"value":"High","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2009-2417.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2417","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2417"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=516181","reference_id":"516181","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=516181"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=541991","reference_id":"541991","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=541991"},{"reference_url":"https://security.gentoo.org/glsa/200909-20","reference_id":"GLSA-200909-20","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200909-20"},{"reference_url":"https://access.redhat.com/errata/RHSA-2009:1209","reference_id":"RHSA-2009:1209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2009:1209"},{"reference_url":"https://usn.ubuntu.com/1158-1/","reference_id":"USN-1158-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1158-1/"},{"reference_url":"https://usn.ubuntu.com/818-1/","reference_id":"USN-818-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/818-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376339?format=json","purl":"pkg:generic/curl.se/curl@7.19.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-72pz-4qf7-xfdb"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-958x-aqdm-27br"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a9jr-hx2n-87ch"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-b8jv-hnb7-eqfc"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-ddky-6vbe-nqc8"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-gme9-9d93-8bgk"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hg7c-ydk3-7ybq"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-njfg-99cj-cfh4"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-p9gw-tfvj-xfb7"},{"vulnerability":"VCID-pgqj-25tn-akf3"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qc6p-1m1y-a3ar"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qrrf-z64u-zkck"},{"vulnerability":"VCID-qxf1-m33c-3kbq"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-snt9-bpy7-pqhd"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-x6jw-xxpk-eufb"},{"vulnerability":"VCID-x6pd-2arc-gqdq"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-y841-wa7x-gyd4"},{"vulnerability":"VCID-yn3p-7hnq-13hv"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-za4f-bm16-j7ba"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.19.6"}],"aliases":["CVE-2009-2417"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g3rz-vtae-h3cw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59165?format=json","vulnerability_id":"VCID-gme9-9d93-8bgk","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0138.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0138.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-0138","reference_id":"","reference_type":"","scores":[{"value":"0.00928","scoring_system":"epss","scoring_elements":"0.76414","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-0138"},{"reference_url":"https://curl.se/docs/CVE-2014-0138.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2014-0138.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0138","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0138"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0139","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0139"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1079148","reference_id":"1079148","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1079148"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742728","reference_id":"742728","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742728"},{"reference_url":"https://security.gentoo.org/glsa/201406-21","reference_id":"GLSA-201406-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-21"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0561","reference_id":"RHSA-2014:0561","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0561"},{"reference_url":"https://usn.ubuntu.com/2167-1/","reference_id":"USN-2167-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2167-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376367?format=json","purl":"pkg:generic/curl.se/curl@7.36.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-3m3q-mxu4-9uhh"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-72pz-4qf7-xfdb"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8kzz-y6n1-97cv"},{"vulnerability":"VCID-958x-aqdm-27br"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9ck1-b1zb-euad"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-b8jv-hnb7-eqfc"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-dcuk-131b-pbgp"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-m3hp-gvpn-4kea"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-p9gw-tfvj-xfb7"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qc6p-1m1y-a3ar"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qrrf-z64u-zkck"},{"vulnerability":"VCID-qxf1-m33c-3kbq"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-snt9-bpy7-pqhd"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-t49y-2csd-q7c9"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uq2h-5uqp-rfbg"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-yn3p-7hnq-13hv"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-za4f-bm16-j7ba"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.36.0"}],"aliases":["CVE-2014-0138"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gme9-9d93-8bgk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42592?format=json","vulnerability_id":"VCID-h6tz-3ztg-byhr","summary":"curl: credential leak on redirect","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-27774.json","reference_id":"","reference_type":"","scores":[{"value":"5.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-27774.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-27774","reference_id":"","reference_type":"","scores":[{"value":"0.00314","scoring_system":"epss","scoring_elements":"0.54801","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-27774"},{"reference_url":"https://curl.se/docs/CVE-2022-27774.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2022-27774.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://hackerone.com/reports/1543773","reference_id":"","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:41:23Z/"}],"url":"https://hackerone.com/reports/1543773"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010254","reference_id":"1010254","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010254"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2077547","reference_id":"2077547","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2077547"},{"reference_url":"https://security.archlinux.org/AVG-2685","reference_id":"AVG-2685","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2685"},{"reference_url":"https://www.debian.org/security/2022/dsa-5197","reference_id":"dsa-5197","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:41:23Z/"}],"url":"https://www.debian.org/security/2022/dsa-5197"},{"reference_url":"https://security.gentoo.org/glsa/202212-01","reference_id":"GLSA-202212-01","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:41:23Z/"}],"url":"https://security.gentoo.org/glsa/202212-01"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html","reference_id":"msg00028.html","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:41:23Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20220609-0008/","reference_id":"ntap-20220609-0008","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:41:23Z/"}],"url":"https://security.netapp.com/advisory/ntap-20220609-0008/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:5245","reference_id":"RHSA-2022:5245","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:5245"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:5313","reference_id":"RHSA-2022:5313","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:5313"},{"reference_url":"https://usn.ubuntu.com/5397-1/","reference_id":"USN-5397-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5397-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376435?format=json","purl":"pkg:generic/curl.se/curl@7.83.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-32gj-mvnb-rudh"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-4pzm-87dd-xqbs"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689c-z62z-ukc7"},{"vulnerability":"VCID-71rt-1h3a-jkcm"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e1rm-18vc-rkc2"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-frj4-zf2v-87g2"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-hsjj-6vfn-4ugt"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-ku14-1pmr-pbbd"},{"vulnerability":"VCID-kudb-x77h-1ud4"},{"vulnerability":"VCID-nhst-thye-guh2"},{"vulnerability":"VCID-nmwe-9bw8-2ud1"},{"vulnerability":"VCID-p2p1-bs19-53hd"},{"vulnerability":"VCID-p6hr-p4dr-cyh7"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qteb-88n4-5ka7"},{"vulnerability":"VCID-r1c8-6w99-kqgc"},{"vulnerability":"VCID-r4re-xx26-2kgm"},{"vulnerability":"VCID-sd8m-enmc-muhn"},{"vulnerability":"VCID-srgc-rxj3-6ydd"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tx73-4h2v-uyb4"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-v13d-ffaa-hyd9"},{"vulnerability":"VCID-wj8v-8fnv-kqgj"},{"vulnerability":"VCID-y7c7-w2ru-gbhm"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.83.0"}],"aliases":["CVE-2022-27774"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-h6tz-3ztg-byhr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/69958?format=json","vulnerability_id":"VCID-hg7c-ydk3-7ybq","summary":"curl: Cookie domain suffix match vulnerability","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1944.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1944.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1944","reference_id":"","reference_type":"","scores":[{"value":"0.02482","scoring_system":"epss","scoring_elements":"0.85537","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1944"},{"reference_url":"https://curl.se/docs/CVE-2013-1944.html","reference_id":"","reference_type":"","scores":[{"value":"High","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2013-1944.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1944","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1944"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=705274","reference_id":"705274","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=705274"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=950577","reference_id":"950577","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=950577"},{"reference_url":"https://security.gentoo.org/glsa/201401-14","reference_id":"GLSA-201401-14","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-14"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0771","reference_id":"RHSA-2013:0771","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0771"},{"reference_url":"https://usn.ubuntu.com/1801-1/","reference_id":"USN-1801-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1801-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376361?format=json","purl":"pkg:generic/curl.se/curl@7.30.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-72pz-4qf7-xfdb"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8kzz-y6n1-97cv"},{"vulnerability":"VCID-958x-aqdm-27br"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a9jr-hx2n-87ch"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-b8jv-hnb7-eqfc"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-ddky-6vbe-nqc8"},{"vulnerability":"VCID-ddtt-b7y9-ubgn"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-gme9-9d93-8bgk"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hk4n-peps-yuck"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-m3hp-gvpn-4kea"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-njfg-99cj-cfh4"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-p9gw-tfvj-xfb7"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qc6p-1m1y-a3ar"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qrrf-z64u-zkck"},{"vulnerability":"VCID-qxf1-m33c-3kbq"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-snt9-bpy7-pqhd"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v3w9-aq2q-6kdd"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-y841-wa7x-gyd4"},{"vulnerability":"VCID-yn3p-7hnq-13hv"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-za4f-bm16-j7ba"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.30.0"}],"aliases":["CVE-2013-1944"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hg7c-ydk3-7ybq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/74671?format=json","vulnerability_id":"VCID-jeet-9rt6-vygh","summary":"curl: local file access via unsafe redirects","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0037.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0037.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-0037","reference_id":"","reference_type":"","scores":[{"value":"0.09919","scoring_system":"epss","scoring_elements":"0.9314","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-0037"},{"reference_url":"https://curl.se/docs/CVE-2009-0037.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2009-0037.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0037","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0037"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=485271","reference_id":"485271","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=485271"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=518423","reference_id":"518423","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=518423"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/32834.txt","reference_id":"CVE-2009-0037;OSVDB-53572","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/32834.txt"},{"reference_url":"https://www.securityfocus.com/bid/33962/info","reference_id":"CVE-2009-0037;OSVDB-53572","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/33962/info"},{"reference_url":"https://security.gentoo.org/glsa/200903-21","reference_id":"GLSA-200903-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200903-21"},{"reference_url":"https://access.redhat.com/errata/RHSA-2009:0341","reference_id":"RHSA-2009:0341","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2009:0341"},{"reference_url":"https://usn.ubuntu.com/726-1/","reference_id":"USN-726-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/726-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376337?format=json","purl":"pkg:generic/curl.se/curl@7.19.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-72pz-4qf7-xfdb"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-958x-aqdm-27br"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a9jr-hx2n-87ch"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-b8jv-hnb7-eqfc"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-ddky-6vbe-nqc8"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-g3rz-vtae-h3cw"},{"vulnerability":"VCID-gme9-9d93-8bgk"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hg7c-ydk3-7ybq"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-njfg-99cj-cfh4"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-p9gw-tfvj-xfb7"},{"vulnerability":"VCID-pgqj-25tn-akf3"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qc6p-1m1y-a3ar"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qrrf-z64u-zkck"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-snt9-bpy7-pqhd"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-x6jw-xxpk-eufb"},{"vulnerability":"VCID-x6pd-2arc-gqdq"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-y841-wa7x-gyd4"},{"vulnerability":"VCID-yn3p-7hnq-13hv"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-za4f-bm16-j7ba"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.19.4"}],"aliases":["CVE-2009-0037"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jeet-9rt6-vygh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/44961?format=json","vulnerability_id":"VCID-jukq-4rsf-f7hb","summary":"curl: Bad connection reuse due to flawed path name checks","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22924.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22924.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22924","reference_id":"","reference_type":"","scores":[{"value":"0.00746","scoring_system":"epss","scoring_elements":"0.7337","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22924"},{"reference_url":"https://curl.se/docs/CVE-2021-22924.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2021-22924.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://hackerone.com/reports/1223565","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/"}],"url":"https://hackerone.com/reports/1223565"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1981460","reference_id":"1981460","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1981460"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991492","reference_id":"991492","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991492"},{"reference_url":"https://security.archlinux.org/ASA-202107-59","reference_id":"ASA-202107-59","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-59"},{"reference_url":"https://security.archlinux.org/ASA-202107-60","reference_id":"ASA-202107-60","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-60"},{"reference_url":"https://security.archlinux.org/ASA-202107-61","reference_id":"ASA-202107-61","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-61"},{"reference_url":"https://security.archlinux.org/ASA-202107-62","reference_id":"ASA-202107-62","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-62"},{"reference_url":"https://security.archlinux.org/ASA-202107-63","reference_id":"ASA-202107-63","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-63"},{"reference_url":"https://security.archlinux.org/ASA-202107-64","reference_id":"ASA-202107-64","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-64"},{"reference_url":"https://security.archlinux.org/AVG-2194","reference_id":"AVG-2194","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2194"},{"reference_url":"https://security.archlinux.org/AVG-2195","reference_id":"AVG-2195","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2195"},{"reference_url":"https://security.archlinux.org/AVG-2196","reference_id":"AVG-2196","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2196"},{"reference_url":"https://security.archlinux.org/AVG-2197","reference_id":"AVG-2197","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2197"},{"reference_url":"https://security.archlinux.org/AVG-2198","reference_id":"AVG-2198","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2198"},{"reference_url":"https://security.archlinux.org/AVG-2199","reference_id":"AVG-2199","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2199"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-22924","reference_id":"CVE-2021-22924","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-22924"},{"reference_url":"https://www.debian.org/security/2022/dsa-5197","reference_id":"dsa-5197","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/"}],"url":"https://www.debian.org/security/2022/dsa-5197"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/","reference_id":"FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/08/msg00017.html","reference_id":"msg00017.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/08/msg00017.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html","reference_id":"msg00017.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20210902-0003/","reference_id":"ntap-20210902-0003","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/"}],"url":"https://security.netapp.com/advisory/ntap-20210902-0003/"},{"reference_url":"https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cdev.kafka.apache.org%3E","reference_id":"r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cdev.kafka.apache.org%3E","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/"}],"url":"https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cdev.kafka.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cusers.kafka.apache.org%3E","reference_id":"r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cusers.kafka.apache.org%3E","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/"}],"url":"https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cusers.kafka.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cdev.kafka.apache.org%3E","reference_id":"rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cdev.kafka.apache.org%3E","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/"}],"url":"https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cdev.kafka.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cusers.kafka.apache.org%3E","reference_id":"rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cusers.kafka.apache.org%3E","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/"}],"url":"https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cusers.kafka.apache.org%3E"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3582","reference_id":"RHSA-2021:3582","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3582"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1354","reference_id":"RHSA-2022:1354","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1354"},{"reference_url":"https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf","reference_id":"ssa-484086.pdf","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/"}],"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf"},{"reference_url":"https://cert-portal.siemens.com/productcert/pdf/ssa-732250.pdf","reference_id":"ssa-732250.pdf","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/"}],"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-732250.pdf"},{"reference_url":"https://usn.ubuntu.com/5021-1/","reference_id":"USN-5021-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5021-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376429?format=json","purl":"pkg:generic/curl.se/curl@7.78.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-32gj-mvnb-rudh"},{"vulnerability":"VCID-3dn4-6jtb-kqhk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-4pzm-87dd-xqbs"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689c-z62z-ukc7"},{"vulnerability":"VCID-71rt-1h3a-jkcm"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e1rm-18vc-rkc2"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-f8uz-dv1e-kkab"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-frj4-zf2v-87g2"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-ku14-1pmr-pbbd"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-nmwe-9bw8-2ud1"},{"vulnerability":"VCID-p2p1-bs19-53hd"},{"vulnerability":"VCID-p6hr-p4dr-cyh7"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qteb-88n4-5ka7"},{"vulnerability":"VCID-r1c8-6w99-kqgc"},{"vulnerability":"VCID-r4re-xx26-2kgm"},{"vulnerability":"VCID-sd8m-enmc-muhn"},{"vulnerability":"VCID-srgc-rxj3-6ydd"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v13d-ffaa-hyd9"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-y7c7-w2ru-gbhm"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.78.0"}],"aliases":["CVE-2021-22924"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jukq-4rsf-f7hb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5044?format=json","vulnerability_id":"VCID-k93r-eqgb-fqgq","summary":"curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-7168.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-7168.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-7168","reference_id":"","reference_type":"","scores":[{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23395","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-7168"},{"reference_url":"https://curl.se/docs/CVE-2026-7168.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2026-7168.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7168","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7168"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://hackerone.com/reports/3697719","reference_id":"","reference_type":"","scores":[],"url":"https://hackerone.com/reports/3697719"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2476979","reference_id":"2476979","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2476979"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:19106","reference_id":"RHSA-2026:19106","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:19106"},{"reference_url":"https://usn.ubuntu.com/8227-1/","reference_id":"USN-8227-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8227-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376473?format=json","purl":"pkg:generic/curl.se/curl@8.20.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.20.0"}],"aliases":["CVE-2026-7168"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-k93r-eqgb-fqgq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/55654?format=json","vulnerability_id":"VCID-njfg-99cj-cfh4","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0139.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0139.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-0139","reference_id":"","reference_type":"","scores":[{"value":"0.0167","scoring_system":"epss","scoring_elements":"0.8243","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-0139"},{"reference_url":"https://curl.se/docs/CVE-2014-0139.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2014-0139.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0138","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0138"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0139","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0139"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1079149","reference_id":"1079149","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1079149"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742728","reference_id":"742728","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742728"},{"reference_url":"https://security.gentoo.org/glsa/201406-21","reference_id":"GLSA-201406-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-21"},{"reference_url":"https://usn.ubuntu.com/2167-1/","reference_id":"USN-2167-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2167-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376367?format=json","purl":"pkg:generic/curl.se/curl@7.36.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-3m3q-mxu4-9uhh"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-72pz-4qf7-xfdb"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8kzz-y6n1-97cv"},{"vulnerability":"VCID-958x-aqdm-27br"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9ck1-b1zb-euad"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-b8jv-hnb7-eqfc"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-dcuk-131b-pbgp"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-m3hp-gvpn-4kea"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-p9gw-tfvj-xfb7"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qc6p-1m1y-a3ar"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qrrf-z64u-zkck"},{"vulnerability":"VCID-qxf1-m33c-3kbq"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-snt9-bpy7-pqhd"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-t49y-2csd-q7c9"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uq2h-5uqp-rfbg"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-yn3p-7hnq-13hv"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-za4f-bm16-j7ba"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.36.0"}],"aliases":["CVE-2014-0139"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-njfg-99cj-cfh4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/46273?format=json","vulnerability_id":"VCID-nuef-bv37-hfaz","summary":"curl: FTP PASV command response can cause curl to connect to arbitrary host","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-8284.json","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-8284.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-8284","reference_id":"","reference_type":"","scores":[{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.27993","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-8284"},{"reference_url":"https://curl.se/docs/CVE-2020-8284.html","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Low","scoring_system":"cvssv3.1","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/"}],"url":"https://curl.se/docs/CVE-2020-8284.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8169","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8169"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8177","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8177"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8231","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8231"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8284","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8284"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8285","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8285"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8286","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8286"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22876","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22876"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22890","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22890"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://hackerone.com/reports/1040166","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/"}],"url":"https://hackerone.com/reports/1040166"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1902667","reference_id":"1902667","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1902667"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=977163","reference_id":"977163","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=977163"},{"reference_url":"https://security.archlinux.org/AVG-1337","reference_id":"AVG-1337","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1337"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DAEHE2S2QLO4AO4MEEYL75NB7SAH5PSL/","reference_id":"DAEHE2S2QLO4AO4MEEYL75NB7SAH5PSL","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DAEHE2S2QLO4AO4MEEYL75NB7SAH5PSL/"},{"reference_url":"https://www.debian.org/security/2021/dsa-4881","reference_id":"dsa-4881","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/"}],"url":"https://www.debian.org/security/2021/dsa-4881"},{"reference_url":"https://security.gentoo.org/glsa/202012-14","reference_id":"GLSA-202012-14","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/"}],"url":"https://security.gentoo.org/glsa/202012-14"},{"reference_url":"https://support.apple.com/kb/HT212325","reference_id":"HT212325","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/"}],"url":"https://support.apple.com/kb/HT212325"},{"reference_url":"https://support.apple.com/kb/HT212326","reference_id":"HT212326","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/"}],"url":"https://support.apple.com/kb/HT212326"},{"reference_url":"https://support.apple.com/kb/HT212327","reference_id":"HT212327","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/"}],"url":"https://support.apple.com/kb/HT212327"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2020/12/msg00029.html","reference_id":"msg00029.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2020/12/msg00029.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20210122-0007/","reference_id":"ntap-20210122-0007","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/"}],"url":"https://security.netapp.com/advisory/ntap-20210122-0007/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NZUVSQHN2ESHMJXNQ2Z7T2EELBB5HJXG/","reference_id":"NZUVSQHN2ESHMJXNQ2Z7T2EELBB5HJXG","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NZUVSQHN2ESHMJXNQ2Z7T2EELBB5HJXG/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1610","reference_id":"RHSA-2021:1610","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1610"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2471","reference_id":"RHSA-2021:2471","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2471"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2472","reference_id":"RHSA-2021:2472","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2472"},{"reference_url":"https://usn.ubuntu.com/4665-1/","reference_id":"USN-4665-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4665-1/"},{"reference_url":"https://usn.ubuntu.com/4665-2/","reference_id":"USN-4665-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4665-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376424?format=json","purl":"pkg:generic/curl.se/curl@7.74.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-32gj-mvnb-rudh"},{"vulnerability":"VCID-3dn4-6jtb-kqhk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-4pzm-87dd-xqbs"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-cgpy-5qpn-dkb8"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-f8uz-dv1e-kkab"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-ku14-1pmr-pbbd"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-p2p1-bs19-53hd"},{"vulnerability":"VCID-p6hr-p4dr-cyh7"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qteb-88n4-5ka7"},{"vulnerability":"VCID-r4re-xx26-2kgm"},{"vulnerability":"VCID-r9g6-71tv-byak"},{"vulnerability":"VCID-sd8m-enmc-muhn"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v13d-ffaa-hyd9"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y7c7-w2ru-gbhm"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.74.0"}],"aliases":["CVE-2020-8284"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nuef-bv37-hfaz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/66047?format=json","vulnerability_id":"VCID-p9gw-tfvj-xfb7","summary":"curl: NTLM credentials not-checked for proxy connection re-use","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0755.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0755.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-0755","reference_id":"","reference_type":"","scores":[{"value":"0.00346","scoring_system":"epss","scoring_elements":"0.57447","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-0755"},{"reference_url":"https://curl.se/docs/CVE-2016-0755.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2016-0755.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0755","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0755"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1302263","reference_id":"1302263","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1302263"},{"reference_url":"https://security.gentoo.org/glsa/201701-47","reference_id":"GLSA-201701-47","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201701-47"},{"reference_url":"https://usn.ubuntu.com/2882-1/","reference_id":"USN-2882-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2882-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376380?format=json","purl":"pkg:generic/curl.se/curl@7.47.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-2x3m-p3eu-y7cn"},{"vulnerability":"VCID-3m3q-mxu4-9uhh"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-72pz-4qf7-xfdb"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-8kzz-y6n1-97cv"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-m3hp-gvpn-4kea"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qxf1-m33c-3kbq"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uq2h-5uqp-rfbg"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.47.0"}],"aliases":["CVE-2016-0755"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-p9gw-tfvj-xfb7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/73489?format=json","vulnerability_id":"VCID-pgqj-25tn-akf3","summary":"curl: zlib-compression causes curl to pass more than CURL_MAX_WRITE_SIZE bytes to write callback","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0734.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0734.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-0734","reference_id":"","reference_type":"","scores":[{"value":"0.0548","scoring_system":"epss","scoring_elements":"0.90344","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-0734"},{"reference_url":"https://curl.se/docs/CVE-2010-0734.html","reference_id":"","reference_type":"","scores":[{"value":"High","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2010-0734.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0734","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0734"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=563220","reference_id":"563220","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=563220"},{"reference_url":"https://security.gentoo.org/glsa/201203-02","reference_id":"GLSA-201203-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201203-02"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0273","reference_id":"RHSA-2010:0273","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0273"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0329","reference_id":"RHSA-2010:0329","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0329"},{"reference_url":"https://usn.ubuntu.com/1158-1/","reference_id":"USN-1158-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1158-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376341?format=json","purl":"pkg:generic/curl.se/curl@7.20.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-2nad-8f6j-a7bz"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-4wmd-2ube-6ud3"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-72pz-4qf7-xfdb"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-958x-aqdm-27br"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a9jr-hx2n-87ch"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-b8jv-hnb7-eqfc"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-ddky-6vbe-nqc8"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-gme9-9d93-8bgk"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hg7c-ydk3-7ybq"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-njfg-99cj-cfh4"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-p9gw-tfvj-xfb7"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qc6p-1m1y-a3ar"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qrrf-z64u-zkck"},{"vulnerability":"VCID-qxf1-m33c-3kbq"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-snt9-bpy7-pqhd"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-x6jw-xxpk-eufb"},{"vulnerability":"VCID-x6pd-2arc-gqdq"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-y841-wa7x-gyd4"},{"vulnerability":"VCID-yn3p-7hnq-13hv"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-za4f-bm16-j7ba"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.20.0"}],"aliases":["CVE-2010-0734"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pgqj-25tn-akf3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/38505?format=json","vulnerability_id":"VCID-ptdk-wtvg-zkaw","summary":"curl: IDN wildcard match may lead to Improper Cerificate Validation","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28321.json","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28321.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-28321","reference_id":"","reference_type":"","scores":[{"value":"0.00297","scoring_system":"epss","scoring_elements":"0.53255","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-28321"},{"reference_url":"https://curl.se/docs/CVE-2023-28321.html","reference_id":"","reference_type":"","scores":[{"value":"Low","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2023-28321.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28321"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://hackerone.com/reports/1950627","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/"}],"url":"https://hackerone.com/reports/1950627"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036239","reference_id":"1036239","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036239"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2196786","reference_id":"2196786","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2196786"},{"reference_url":"http://seclists.org/fulldisclosure/2023/Jul/47","reference_id":"47","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/"}],"url":"http://seclists.org/fulldisclosure/2023/Jul/47"},{"reference_url":"http://seclists.org/fulldisclosure/2023/Jul/48","reference_id":"48","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/"}],"url":"http://seclists.org/fulldisclosure/2023/Jul/48"},{"reference_url":"http://seclists.org/fulldisclosure/2023/Jul/52","reference_id":"52","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/"}],"url":"http://seclists.org/fulldisclosure/2023/Jul/52"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F4I75RDGX5ULSSCBE5BF3P5I5SFO7ULQ/","reference_id":"F4I75RDGX5ULSSCBE5BF3P5I5SFO7ULQ","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F4I75RDGX5ULSSCBE5BF3P5I5SFO7ULQ/"},{"reference_url":"https://security.gentoo.org/glsa/202310-12","reference_id":"GLSA-202310-12","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/"}],"url":"https://security.gentoo.org/glsa/202310-12"},{"reference_url":"https://support.apple.com/kb/HT213843","reference_id":"HT213843","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/"}],"url":"https://support.apple.com/kb/HT213843"},{"reference_url":"https://support.apple.com/kb/HT213844","reference_id":"HT213844","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/"}],"url":"https://support.apple.com/kb/HT213844"},{"reference_url":"https://support.apple.com/kb/HT213845","reference_id":"HT213845","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/"}],"url":"https://support.apple.com/kb/HT213845"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00016.html","reference_id":"msg00016.html","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00016.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20230609-0009/","reference_id":"ntap-20230609-0009","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/"}],"url":"https://security.netapp.com/advisory/ntap-20230609-0009/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4354","reference_id":"RHSA-2023:4354","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4354"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4523","reference_id":"RHSA-2023:4523","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4523"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4628","reference_id":"RHSA-2023:4628","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4628"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4629","reference_id":"RHSA-2023:4629","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4629"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5598","reference_id":"RHSA-2023:5598","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5598"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6292","reference_id":"RHSA-2023:6292","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6292"},{"reference_url":"https://usn.ubuntu.com/6237-1/","reference_id":"USN-6237-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6237-1/"},{"reference_url":"https://usn.ubuntu.com/6237-3/","reference_id":"USN-6237-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6237-3/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z2LIWHWKOVH24COGGBCVOWDXXIUPKOMK/","reference_id":"Z2LIWHWKOVH24COGGBCVOWDXXIUPKOMK","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z2LIWHWKOVH24COGGBCVOWDXXIUPKOMK/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376445?format=json","purl":"pkg:generic/curl.se/curl@8.1.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-32gj-mvnb-rudh"},{"vulnerability":"VCID-4pzm-87dd-xqbs"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-5jsn-ubxh-fqe4"},{"vulnerability":"VCID-5stq-jajr-57hv"},{"vulnerability":"VCID-689c-z62z-ukc7"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-ku14-1pmr-pbbd"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qteb-88n4-5ka7"},{"vulnerability":"VCID-r1c8-6w99-kqgc"},{"vulnerability":"VCID-r4re-xx26-2kgm"},{"vulnerability":"VCID-sd8m-enmc-muhn"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-ujr4-yect-subh"},{"vulnerability":"VCID-x47y-r42c-bkfk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.1.0"}],"aliases":["CVE-2023-28321"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ptdk-wtvg-zkaw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5981?format=json","vulnerability_id":"VCID-qax6-9qcb-6yah","summary":"curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-5545.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-5545.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-5545","reference_id":"","reference_type":"","scores":[{"value":"0.00037","scoring_system":"epss","scoring_elements":"0.11312","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-5545"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-5545","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-5545"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2461204","reference_id":"2461204","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2461204"},{"reference_url":"https://hackerone.com/reports/3642555","reference_id":"3642555","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-13T17:46:36Z/"}],"url":"https://hackerone.com/reports/3642555"},{"reference_url":"https://curl.se/docs/CVE-2026-5545.html","reference_id":"CVE-2026-5545.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N"},{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-13T17:46:36Z/"}],"url":"https://curl.se/docs/CVE-2026-5545.html"},{"reference_url":"https://curl.se/docs/CVE-2026-5545.json","reference_id":"CVE-2026-5545.json","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-13T17:46:36Z/"}],"url":"https://curl.se/docs/CVE-2026-5545.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:12916","reference_id":"RHSA-2026:12916","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:12916"},{"reference_url":"https://usn.ubuntu.com/8227-1/","reference_id":"USN-8227-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8227-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376473?format=json","purl":"pkg:generic/curl.se/curl@8.20.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.20.0"}],"aliases":["CVE-2026-5545"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qax6-9qcb-6yah"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/67913?format=json","vulnerability_id":"VCID-qc6p-1m1y-a3ar","summary":"curl: URL request injection vulnerability in parseurlandfillconn()","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8150.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8150.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8150","reference_id":"","reference_type":"","scores":[{"value":"0.01225","scoring_system":"epss","scoring_elements":"0.79432","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8150"},{"reference_url":"https://curl.se/docs/CVE-2014-8150.html","reference_id":"","reference_type":"","scores":[{"value":"High","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2014-8150.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8150","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8150"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1178692","reference_id":"1178692","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1178692"},{"reference_url":"https://security.gentoo.org/glsa/201701-47","reference_id":"GLSA-201701-47","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201701-47"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:1254","reference_id":"RHSA-2015:1254","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:1254"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:2159","reference_id":"RHSA-2015:2159","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:2159"},{"reference_url":"https://usn.ubuntu.com/2474-1/","reference_id":"USN-2474-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2474-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376372?format=json","purl":"pkg:generic/curl.se/curl@7.40.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-3m3q-mxu4-9uhh"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-72pz-4qf7-xfdb"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8kzz-y6n1-97cv"},{"vulnerability":"VCID-958x-aqdm-27br"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-bzpr-8cw4-zkd6"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-dcuk-131b-pbgp"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-m3hp-gvpn-4kea"},{"vulnerability":"VCID-mw8z-vyq4-5kf3"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-p9gw-tfvj-xfb7"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qrrf-z64u-zkck"},{"vulnerability":"VCID-qxf1-m33c-3kbq"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uq2h-5uqp-rfbg"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vqf9-y6k7-f7bt"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-yn3p-7hnq-13hv"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-za4f-bm16-j7ba"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.40.0"}],"aliases":["CVE-2014-8150"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qc6p-1m1y-a3ar"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/38504?format=json","vulnerability_id":"VCID-qqyy-ejjy-zugp","summary":"curl: siglongjmp race condition may lead to crash","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28320.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28320.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-28320","reference_id":"","reference_type":"","scores":[{"value":"0.00641","scoring_system":"epss","scoring_elements":"0.70928","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-28320"},{"reference_url":"https://curl.se/docs/CVE-2023-28320.html","reference_id":"","reference_type":"","scores":[{"value":"Low","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2023-28320.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28320","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28320"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://hackerone.com/reports/1929597","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/"}],"url":"https://hackerone.com/reports/1929597"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036239","reference_id":"1036239","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036239"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2196783","reference_id":"2196783","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2196783"},{"reference_url":"http://seclists.org/fulldisclosure/2023/Jul/47","reference_id":"47","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/"}],"url":"http://seclists.org/fulldisclosure/2023/Jul/47"},{"reference_url":"http://seclists.org/fulldisclosure/2023/Jul/48","reference_id":"48","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/"}],"url":"http://seclists.org/fulldisclosure/2023/Jul/48"},{"reference_url":"http://seclists.org/fulldisclosure/2023/Jul/52","reference_id":"52","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/"}],"url":"http://seclists.org/fulldisclosure/2023/Jul/52"},{"reference_url":"https://security.gentoo.org/glsa/202310-12","reference_id":"GLSA-202310-12","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/"}],"url":"https://security.gentoo.org/glsa/202310-12"},{"reference_url":"https://support.apple.com/kb/HT213843","reference_id":"HT213843","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/"}],"url":"https://support.apple.com/kb/HT213843"},{"reference_url":"https://support.apple.com/kb/HT213844","reference_id":"HT213844","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/"}],"url":"https://support.apple.com/kb/HT213844"},{"reference_url":"https://support.apple.com/kb/HT213845","reference_id":"HT213845","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/"}],"url":"https://support.apple.com/kb/HT213845"},{"reference_url":"https://security.netapp.com/advisory/ntap-20230609-0009/","reference_id":"ntap-20230609-0009","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/"}],"url":"https://security.netapp.com/advisory/ntap-20230609-0009/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376445?format=json","purl":"pkg:generic/curl.se/curl@8.1.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-32gj-mvnb-rudh"},{"vulnerability":"VCID-4pzm-87dd-xqbs"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-5jsn-ubxh-fqe4"},{"vulnerability":"VCID-5stq-jajr-57hv"},{"vulnerability":"VCID-689c-z62z-ukc7"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-ku14-1pmr-pbbd"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qteb-88n4-5ka7"},{"vulnerability":"VCID-r1c8-6w99-kqgc"},{"vulnerability":"VCID-r4re-xx26-2kgm"},{"vulnerability":"VCID-sd8m-enmc-muhn"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-ujr4-yect-subh"},{"vulnerability":"VCID-x47y-r42c-bkfk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.1.0"}],"aliases":["CVE-2023-28320"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qqyy-ejjy-zugp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/67279?format=json","vulnerability_id":"VCID-qrrf-z64u-zkck","summary":"curl: Negotiate not treated as connection-oriented","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3148.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3148.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-3148","reference_id":"","reference_type":"","scores":[{"value":"0.01422","scoring_system":"epss","scoring_elements":"0.80909","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-3148"},{"reference_url":"https://curl.se/docs/CVE-2015-3148.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2015-3148.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3143","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3143"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3148","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3148"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1213351","reference_id":"1213351","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1213351"},{"reference_url":"https://security.gentoo.org/glsa/201509-02","reference_id":"GLSA-201509-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201509-02"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:1254","reference_id":"RHSA-2015:1254","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:1254"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:2159","reference_id":"RHSA-2015:2159","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:2159"},{"reference_url":"https://usn.ubuntu.com/2591-1/","reference_id":"USN-2591-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2591-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376374?format=json","purl":"pkg:generic/curl.se/curl@7.42.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-3m3q-mxu4-9uhh"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-72pz-4qf7-xfdb"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-8kzz-y6n1-97cv"},{"vulnerability":"VCID-958x-aqdm-27br"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-m3hp-gvpn-4kea"},{"vulnerability":"VCID-mw8z-vyq4-5kf3"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-p9gw-tfvj-xfb7"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qxf1-m33c-3kbq"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uq2h-5uqp-rfbg"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vqf9-y6k7-f7bt"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-za4f-bm16-j7ba"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.42.0"}],"aliases":["CVE-2015-3148"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qrrf-z64u-zkck"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76670?format=json","vulnerability_id":"VCID-qze3-vubf-67ej","summary":"security flaw","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3185.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3185.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3185","reference_id":"","reference_type":"","scores":[{"value":"0.04852","scoring_system":"epss","scoring_elements":"0.89701","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3185"},{"reference_url":"https://curl.se/docs/CVE-2005-3185.html","reference_id":"","reference_type":"","scores":[{"value":"High","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2005-3185.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3185"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617794","reference_id":"1617794","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617794"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=333734","reference_id":"333734","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=333734"},{"reference_url":"https://security.gentoo.org/glsa/200510-19","reference_id":"GLSA-200510-19","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200510-19"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:807","reference_id":"RHSA-2005:807","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:807"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:812","reference_id":"RHSA-2005:812","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:812"},{"reference_url":"https://usn.ubuntu.com/205-1/","reference_id":"USN-205-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/205-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376317?format=json","purl":"pkg:generic/curl.se/curl@7.15.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-72pz-4qf7-xfdb"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-958x-aqdm-27br"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-a9jr-hx2n-87ch"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-b4x7-cte8-zqhu"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-b8jv-hnb7-eqfc"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-g3rz-vtae-h3cw"},{"vulnerability":"VCID-gg9j-f99e-qfgn"},{"vulnerability":"VCID-gme9-9d93-8bgk"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hg7c-ydk3-7ybq"},{"vulnerability":"VCID-jeet-9rt6-vygh"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-njfg-99cj-cfh4"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-p9gw-tfvj-xfb7"},{"vulnerability":"VCID-pgqj-25tn-akf3"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qc6p-1m1y-a3ar"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qrrf-z64u-zkck"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tvwg-295p-c3c6"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-x6jw-xxpk-eufb"},{"vulnerability":"VCID-x6pd-2arc-gqdq"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-y841-wa7x-gyd4"},{"vulnerability":"VCID-yn3p-7hnq-13hv"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-za4f-bm16-j7ba"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.15.0"}],"aliases":["CVE-2005-3185"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qze3-vubf-67ej"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/56967?format=json","vulnerability_id":"VCID-rxqn-hx8b-4ket","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7167.json","reference_id":"","reference_type":"","scores":[{"value":"2.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7167.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-7167","reference_id":"","reference_type":"","scores":[{"value":"0.02257","scoring_system":"epss","scoring_elements":"0.84873","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-7167"},{"reference_url":"https://curl.se/docs/CVE-2016-7167.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2016-7167.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7167","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7167"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:N/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1375906","reference_id":"1375906","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1375906"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=837945","reference_id":"837945","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=837945"},{"reference_url":"https://security.archlinux.org/ASA-201609-18","reference_id":"ASA-201609-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201609-18"},{"reference_url":"https://security.archlinux.org/ASA-201609-19","reference_id":"ASA-201609-19","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201609-19"},{"reference_url":"https://security.archlinux.org/AVG-20","reference_id":"AVG-20","reference_type":"","scores":[{"value":"Low","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-20"},{"reference_url":"https://security.archlinux.org/AVG-21","reference_id":"AVG-21","reference_type":"","scores":[{"value":"Low","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-21"},{"reference_url":"https://security.gentoo.org/glsa/201701-47","reference_id":"GLSA-201701-47","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201701-47"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2016","reference_id":"RHSA-2017:2016","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2016"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2486","reference_id":"RHSA-2018:2486","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2486"},{"reference_url":"https://usn.ubuntu.com/3123-1/","reference_id":"USN-3123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3123-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376388?format=json","purl":"pkg:generic/curl.se/curl@7.50.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-2x3m-p3eu-y7cn"},{"vulnerability":"VCID-3m3q-mxu4-9uhh"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-8kzz-y6n1-97cv"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-fz2p-bn31-2yha"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.50.3"}],"aliases":["CVE-2016-7167"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rxqn-hx8b-4ket"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/8127?format=json","vulnerability_id":"VCID-ss8u-8s2v-dkf4","summary":"curl: curl: Unauthorized access due to improper HTTP proxy connection reuse","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3784.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3784.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-3784","reference_id":"","reference_type":"","scores":[{"value":"0.00023","scoring_system":"epss","scoring_elements":"0.06899","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-3784"},{"reference_url":"https://curl.se/docs/CVE-2026-3784.html","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Low","scoring_system":"cvssv3.1","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-11T15:48:38Z/"}],"url":"https://curl.se/docs/CVE-2026-3784.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3784","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3784"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://hackerone.com/reports/3584903","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-11T15:48:38Z/"}],"url":"https://hackerone.com/reports/3584903"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2446449","reference_id":"2446449","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2446449"},{"reference_url":"https://curl.se/docs/CVE-2026-3784.json","reference_id":"CVE-2026-3784.json","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-11T15:48:38Z/"}],"url":"https://curl.se/docs/CVE-2026-3784.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6893","reference_id":"RHSA-2026:6893","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6893"},{"reference_url":"https://usn.ubuntu.com/8084-1/","reference_id":"USN-8084-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8084-1/"},{"reference_url":"https://usn.ubuntu.com/8099-1/","reference_id":"USN-8099-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8099-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376472?format=json","purl":"pkg:generic/curl.se/curl@8.19.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-5q7e-maen-9kes"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-ku14-1pmr-pbbd"},{"vulnerability":"VCID-qax6-9qcb-6yah"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.19.0"}],"aliases":["CVE-2026-3784"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ss8u-8s2v-dkf4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/53460?format=json","vulnerability_id":"VCID-tcq7-bk2f-ekdh","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7407.json","reference_id":"","reference_type":"","scores":[{"value":"2.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7407.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7407","reference_id":"","reference_type":"","scores":[{"value":"0.00201","scoring_system":"epss","scoring_elements":"0.42083","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7407"},{"reference_url":"https://curl.se/docs/CVE-2017-7407.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2017-7407.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7407","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7407"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"1","scoring_system":"cvssv2","scoring_elements":"AV:L/AC:H/Au:S/C:P/I:N/A:N"},{"value":"2.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1439190","reference_id":"1439190","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1439190"},{"reference_url":"https://github.com/curl/curl/commit/1890d59905414ab84a35892b2e45833654aa5c13","reference_id":"1890d59905414ab84a35892b2e45833654aa5c13","reference_type":"","scores":[{"value":"2.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:44:34Z/"}],"url":"https://github.com/curl/curl/commit/1890d59905414ab84a35892b2e45833654aa5c13"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859500","reference_id":"859500","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859500"},{"reference_url":"https://security.gentoo.org/glsa/201709-14","reference_id":"GLSA-201709-14","reference_type":"","scores":[{"value":"2.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:44:34Z/"}],"url":"https://security.gentoo.org/glsa/201709-14"},{"reference_url":"https://usn.ubuntu.com/3441-1/","reference_id":"USN-3441-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3441-1/"},{"reference_url":"https://usn.ubuntu.com/3441-2/","reference_id":"USN-3441-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3441-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376394?format=json","purl":"pkg:generic/curl.se/curl@7.54.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-2x3m-p3eu-y7cn"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7g7n-4tsf-2fgx"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-dmkg-yeua-uffn"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fz2p-bn31-2yha"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.54.0"}],"aliases":["CVE-2017-7407"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tcq7-bk2f-ekdh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76621?format=json","vulnerability_id":"VCID-tvwg-295p-c3c6","summary":"security flaw","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-4077.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-4077.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-4077","reference_id":"","reference_type":"","scores":[{"value":"0.00266","scoring_system":"epss","scoring_elements":"0.50254","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-4077"},{"reference_url":"https://curl.se/docs/CVE-2005-4077.html","reference_id":"","reference_type":"","scores":[{"value":"High","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2005-4077.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4077","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4077"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617850","reference_id":"1617850","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617850"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=342339","reference_id":"342339","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=342339"},{"reference_url":"https://security.gentoo.org/glsa/200512-09","reference_id":"GLSA-200512-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200512-09"},{"reference_url":"https://security.gentoo.org/glsa/200603-25","reference_id":"GLSA-200603-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200603-25"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:875","reference_id":"RHSA-2005:875","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:875"},{"reference_url":"https://usn.ubuntu.com/228-1/","reference_id":"USN-228-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/228-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376318?format=json","purl":"pkg:generic/curl.se/curl@7.15.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-72pz-4qf7-xfdb"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-958x-aqdm-27br"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-a9jr-hx2n-87ch"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-b4x7-cte8-zqhu"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-b8jv-hnb7-eqfc"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-g3rz-vtae-h3cw"},{"vulnerability":"VCID-gg9j-f99e-qfgn"},{"vulnerability":"VCID-gme9-9d93-8bgk"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hg7c-ydk3-7ybq"},{"vulnerability":"VCID-jeet-9rt6-vygh"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-njfg-99cj-cfh4"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-p9gw-tfvj-xfb7"},{"vulnerability":"VCID-pgqj-25tn-akf3"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qc6p-1m1y-a3ar"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qrrf-z64u-zkck"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-x6jw-xxpk-eufb"},{"vulnerability":"VCID-x6pd-2arc-gqdq"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-y841-wa7x-gyd4"},{"vulnerability":"VCID-yn3p-7hnq-13hv"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-za4f-bm16-j7ba"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.15.1"}],"aliases":["CVE-2005-4077"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tvwg-295p-c3c6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42596?format=json","vulnerability_id":"VCID-uws8-s9se-nyay","summary":"curl: auth/cookie leak on redirect","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-27776.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-27776.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-27776","reference_id":"","reference_type":"","scores":[{"value":"0.00682","scoring_system":"epss","scoring_elements":"0.71949","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-27776"},{"reference_url":"https://curl.se/docs/CVE-2022-27776.html","reference_id":"","reference_type":"","scores":[{"value":"Low","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2022-27776.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://hackerone.com/reports/1547048","reference_id":"","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/"}],"url":"https://hackerone.com/reports/1547048"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010252","reference_id":"1010252","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010252"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2078408","reference_id":"2078408","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2078408"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7N5ZBWLNNPZKFK7Q4KEHGCJ2YELQEUJP/","reference_id":"7N5ZBWLNNPZKFK7Q4KEHGCJ2YELQEUJP","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7N5ZBWLNNPZKFK7Q4KEHGCJ2YELQEUJP/"},{"reference_url":"https://security.archlinux.org/AVG-2685","reference_id":"AVG-2685","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2685"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DKKOQXPYLMBSEVDHFS32BPBR3ZQJKY5B/","reference_id":"DKKOQXPYLMBSEVDHFS32BPBR3ZQJKY5B","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DKKOQXPYLMBSEVDHFS32BPBR3ZQJKY5B/"},{"reference_url":"https://www.debian.org/security/2022/dsa-5197","reference_id":"dsa-5197","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/"}],"url":"https://www.debian.org/security/2022/dsa-5197"},{"reference_url":"https://security.gentoo.org/glsa/202212-01","reference_id":"GLSA-202212-01","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/"}],"url":"https://security.gentoo.org/glsa/202212-01"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html","reference_id":"msg00017.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20220609-0008/","reference_id":"ntap-20220609-0008","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/"}],"url":"https://security.netapp.com/advisory/ntap-20220609-0008/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:5245","reference_id":"RHSA-2022:5245","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:5245"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:5313","reference_id":"RHSA-2022:5313","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:5313"},{"reference_url":"https://usn.ubuntu.com/5397-1/","reference_id":"USN-5397-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5397-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376435?format=json","purl":"pkg:generic/curl.se/curl@7.83.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-32gj-mvnb-rudh"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-4pzm-87dd-xqbs"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689c-z62z-ukc7"},{"vulnerability":"VCID-71rt-1h3a-jkcm"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e1rm-18vc-rkc2"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-frj4-zf2v-87g2"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-hsjj-6vfn-4ugt"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-ku14-1pmr-pbbd"},{"vulnerability":"VCID-kudb-x77h-1ud4"},{"vulnerability":"VCID-nhst-thye-guh2"},{"vulnerability":"VCID-nmwe-9bw8-2ud1"},{"vulnerability":"VCID-p2p1-bs19-53hd"},{"vulnerability":"VCID-p6hr-p4dr-cyh7"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qteb-88n4-5ka7"},{"vulnerability":"VCID-r1c8-6w99-kqgc"},{"vulnerability":"VCID-r4re-xx26-2kgm"},{"vulnerability":"VCID-sd8m-enmc-muhn"},{"vulnerability":"VCID-srgc-rxj3-6ydd"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tx73-4h2v-uyb4"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-v13d-ffaa-hyd9"},{"vulnerability":"VCID-wj8v-8fnv-kqgj"},{"vulnerability":"VCID-y7c7-w2ru-gbhm"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.83.0"}],"aliases":["CVE-2022-27776"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uws8-s9se-nyay"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/54854?format=json","vulnerability_id":"VCID-vhq1-me6w-uqfm","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5420.json","reference_id":"","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5420.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5420","reference_id":"","reference_type":"","scores":[{"value":"0.01071","scoring_system":"epss","scoring_elements":"0.78035","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5420"},{"reference_url":"https://curl.se/docs/CVE-2016-5420.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2016-5420.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5419","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5419"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5420","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5420"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5421","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5421"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:S/C:P/I:P/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1362190","reference_id":"1362190","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1362190"},{"reference_url":"https://security.gentoo.org/glsa/201701-47","reference_id":"GLSA-201701-47","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201701-47"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2575","reference_id":"RHSA-2016:2575","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2575"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2957","reference_id":"RHSA-2016:2957","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2957"},{"reference_url":"https://usn.ubuntu.com/3048-1/","reference_id":"USN-3048-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3048-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376386?format=json","purl":"pkg:generic/curl.se/curl@7.50.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-2x3m-p3eu-y7cn"},{"vulnerability":"VCID-3m3q-mxu4-9uhh"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-8kzz-y6n1-97cv"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-fz2p-bn31-2yha"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qxf1-m33c-3kbq"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.50.1"}],"aliases":["CVE-2016-5420"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vhq1-me6w-uqfm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/62300?format=json","vulnerability_id":"VCID-vs5f-8tuz-b7ev","summary":"curl: FTP PWD response parser out of bounds read","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-1000254.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-1000254.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-1000254","reference_id":"","reference_type":"","scores":[{"value":"0.01318","scoring_system":"epss","scoring_elements":"0.80172","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-1000254"},{"reference_url":"https://curl.se/docs/CVE-2017-1000254.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2017-1000254.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000254","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000254"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"2.6","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:N/C:N/I:N/A:P"},{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1495541","reference_id":"1495541","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1495541"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=877671","reference_id":"877671","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=877671"},{"reference_url":"https://security.archlinux.org/ASA-201710-2","reference_id":"ASA-201710-2","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201710-2"},{"reference_url":"https://security.archlinux.org/ASA-201710-3","reference_id":"ASA-201710-3","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201710-3"},{"reference_url":"https://security.archlinux.org/ASA-201710-4","reference_id":"ASA-201710-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201710-4"},{"reference_url":"https://security.archlinux.org/ASA-201710-5","reference_id":"ASA-201710-5","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201710-5"},{"reference_url":"https://security.archlinux.org/ASA-201710-6","reference_id":"ASA-201710-6","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201710-6"},{"reference_url":"https://security.archlinux.org/ASA-201710-7","reference_id":"ASA-201710-7","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201710-7"},{"reference_url":"https://security.archlinux.org/AVG-371","reference_id":"AVG-371","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-371"},{"reference_url":"https://security.archlinux.org/AVG-386","reference_id":"AVG-386","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-386"},{"reference_url":"https://security.archlinux.org/AVG-387","reference_id":"AVG-387","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-387"},{"reference_url":"https://security.archlinux.org/AVG-388","reference_id":"AVG-388","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-388"},{"reference_url":"https://security.archlinux.org/AVG-389","reference_id":"AVG-389","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-389"},{"reference_url":"https://security.archlinux.org/AVG-422","reference_id":"AVG-422","reference_type":"","scores":[{"value":"Low","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-422"},{"reference_url":"https://security.gentoo.org/glsa/201712-04","reference_id":"GLSA-201712-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201712-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2486","reference_id":"RHSA-2018:2486","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2486"},{"reference_url":"https://usn.ubuntu.com/3441-1/","reference_id":"USN-3441-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3441-1/"},{"reference_url":"https://usn.ubuntu.com/3441-2/","reference_id":"USN-3441-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3441-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376398?format=json","purl":"pkg:generic/curl.se/curl@7.56.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-2x3m-p3eu-y7cn"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-ahjd-g791-yfhj"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-dmkg-yeua-uffn"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fz2p-bn31-2yha"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nqds-umrs-37dd"},{"vulnerability":"VCID-ntp8-1uak-t7gp"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.56.0"}],"aliases":["CVE-2017-1000254"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vs5f-8tuz-b7ev"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/44963?format=json","vulnerability_id":"VCID-vvsu-pcba-qfh6","summary":"curl: Incorrect fix for CVE-2021-22898 TELNET stack contents disclosure","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22925.json","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22925.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22925","reference_id":"","reference_type":"","scores":[{"value":"0.00233","scoring_system":"epss","scoring_elements":"0.46202","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22925"},{"reference_url":"https://curl.se/docs/CVE-2021-22925.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2021-22925.html"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://hackerone.com/reports/1223882","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/"}],"url":"https://hackerone.com/reports/1223882"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1970902","reference_id":"1970902","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1970902"},{"reference_url":"http://seclists.org/fulldisclosure/2021/Sep/39","reference_id":"39","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/"}],"url":"http://seclists.org/fulldisclosure/2021/Sep/39"},{"reference_url":"http://seclists.org/fulldisclosure/2021/Sep/40","reference_id":"40","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/"}],"url":"http://seclists.org/fulldisclosure/2021/Sep/40"},{"reference_url":"https://security.archlinux.org/ASA-202107-59","reference_id":"ASA-202107-59","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-59"},{"reference_url":"https://security.archlinux.org/ASA-202107-60","reference_id":"ASA-202107-60","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-60"},{"reference_url":"https://security.archlinux.org/ASA-202107-61","reference_id":"ASA-202107-61","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-61"},{"reference_url":"https://security.archlinux.org/ASA-202107-62","reference_id":"ASA-202107-62","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-62"},{"reference_url":"https://security.archlinux.org/ASA-202107-63","reference_id":"ASA-202107-63","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-63"},{"reference_url":"https://security.archlinux.org/ASA-202107-64","reference_id":"ASA-202107-64","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-64"},{"reference_url":"https://security.archlinux.org/AVG-2194","reference_id":"AVG-2194","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2194"},{"reference_url":"https://security.archlinux.org/AVG-2195","reference_id":"AVG-2195","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2195"},{"reference_url":"https://security.archlinux.org/AVG-2196","reference_id":"AVG-2196","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2196"},{"reference_url":"https://security.archlinux.org/AVG-2197","reference_id":"AVG-2197","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2197"},{"reference_url":"https://security.archlinux.org/AVG-2198","reference_id":"AVG-2198","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2198"},{"reference_url":"https://security.archlinux.org/AVG-2199","reference_id":"AVG-2199","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2199"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/","reference_id":"FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/"},{"reference_url":"https://security.gentoo.org/glsa/202212-01","reference_id":"GLSA-202212-01","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/"}],"url":"https://security.gentoo.org/glsa/202212-01"},{"reference_url":"https://support.apple.com/kb/HT212804","reference_id":"HT212804","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/"}],"url":"https://support.apple.com/kb/HT212804"},{"reference_url":"https://support.apple.com/kb/HT212805","reference_id":"HT212805","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/"}],"url":"https://support.apple.com/kb/HT212805"},{"reference_url":"https://security.netapp.com/advisory/ntap-20210902-0003/","reference_id":"ntap-20210902-0003","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/"}],"url":"https://security.netapp.com/advisory/ntap-20210902-0003/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4511","reference_id":"RHSA-2021:4511","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4511"},{"reference_url":"https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf","reference_id":"ssa-484086.pdf","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/"}],"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf"},{"reference_url":"https://usn.ubuntu.com/5021-1/","reference_id":"USN-5021-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5021-1/"},{"reference_url":"https://usn.ubuntu.com/5021-2/","reference_id":"USN-5021-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5021-2/"},{"reference_url":"https://usn.ubuntu.com/5894-1/","reference_id":"USN-5894-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5894-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376429?format=json","purl":"pkg:generic/curl.se/curl@7.78.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-32gj-mvnb-rudh"},{"vulnerability":"VCID-3dn4-6jtb-kqhk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-4pzm-87dd-xqbs"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689c-z62z-ukc7"},{"vulnerability":"VCID-71rt-1h3a-jkcm"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e1rm-18vc-rkc2"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-f8uz-dv1e-kkab"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-frj4-zf2v-87g2"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-ku14-1pmr-pbbd"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-nmwe-9bw8-2ud1"},{"vulnerability":"VCID-p2p1-bs19-53hd"},{"vulnerability":"VCID-p6hr-p4dr-cyh7"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qteb-88n4-5ka7"},{"vulnerability":"VCID-r1c8-6w99-kqgc"},{"vulnerability":"VCID-r4re-xx26-2kgm"},{"vulnerability":"VCID-sd8m-enmc-muhn"},{"vulnerability":"VCID-srgc-rxj3-6ydd"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v13d-ffaa-hyd9"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-y7c7-w2ru-gbhm"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.78.0"}],"aliases":["CVE-2021-22925"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vvsu-pcba-qfh6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/71776?format=json","vulnerability_id":"VCID-x6jw-xxpk-eufb","summary":"curl: Improper delegation of client credentials during GSS negotiation","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2192.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2192.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2192","reference_id":"","reference_type":"","scores":[{"value":"0.02049","scoring_system":"epss","scoring_elements":"0.84148","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2192"},{"reference_url":"https://curl.se/docs/CVE-2011-2192.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2011-2192.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2192","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2192"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=631615","reference_id":"631615","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=631615"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=711454","reference_id":"711454","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=711454"},{"reference_url":"https://security.gentoo.org/glsa/201203-02","reference_id":"GLSA-201203-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201203-02"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0918","reference_id":"RHSA-2011:0918","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0918"},{"reference_url":"https://usn.ubuntu.com/1158-1/","reference_id":"USN-1158-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1158-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376350?format=json","purl":"pkg:generic/curl.se/curl@7.21.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-2nad-8f6j-a7bz"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-72pz-4qf7-xfdb"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-958x-aqdm-27br"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a9jr-hx2n-87ch"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-b8jv-hnb7-eqfc"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-ddky-6vbe-nqc8"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-gme9-9d93-8bgk"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hg7c-ydk3-7ybq"},{"vulnerability":"VCID-hk4n-peps-yuck"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-m3hp-gvpn-4kea"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-njfg-99cj-cfh4"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-p9gw-tfvj-xfb7"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qc6p-1m1y-a3ar"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qrrf-z64u-zkck"},{"vulnerability":"VCID-qxf1-m33c-3kbq"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-snt9-bpy7-pqhd"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-x6pd-2arc-gqdq"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-y841-wa7x-gyd4"},{"vulnerability":"VCID-yn3p-7hnq-13hv"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-za4f-bm16-j7ba"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.21.7"}],"aliases":["CVE-2011-2192"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-x6jw-xxpk-eufb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/71633?format=json","vulnerability_id":"VCID-x6pd-2arc-gqdq","summary":"HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3389.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3389.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3389","reference_id":"","reference_type":"","scores":[{"value":"0.03832","scoring_system":"epss","scoring_elements":"0.88348","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3389"},{"reference_url":"https://curl.se/docs/CVE-2011-3389.html","reference_id":"","reference_type":"","scores":[{"value":"High","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2011-3389.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=737506","reference_id":"737506","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=737506"},{"reference_url":"https://security.gentoo.org/glsa/201111-02","reference_id":"GLSA-201111-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201111-02"},{"reference_url":"https://security.gentoo.org/glsa/201203-02","reference_id":"GLSA-201203-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201203-02"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1380","reference_id":"RHSA-2011:1380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1384","reference_id":"RHSA-2011:1384","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1384"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0006","reference_id":"RHSA-2012:0006","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0034","reference_id":"RHSA-2012:0034","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0034"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0343","reference_id":"RHSA-2012:0343","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0508","reference_id":"RHSA-2012:0508","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0508"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://usn.ubuntu.com/1263-1/","reference_id":"USN-1263-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1263-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376354?format=json","purl":"pkg:generic/curl.se/curl@7.24.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-72pz-4qf7-xfdb"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8kzz-y6n1-97cv"},{"vulnerability":"VCID-958x-aqdm-27br"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a9jr-hx2n-87ch"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-b8jv-hnb7-eqfc"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-ddky-6vbe-nqc8"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-gme9-9d93-8bgk"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hg7c-ydk3-7ybq"},{"vulnerability":"VCID-hk4n-peps-yuck"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-m3hp-gvpn-4kea"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-njfg-99cj-cfh4"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-p9gw-tfvj-xfb7"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qc6p-1m1y-a3ar"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qrrf-z64u-zkck"},{"vulnerability":"VCID-qxf1-m33c-3kbq"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-snt9-bpy7-pqhd"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-y841-wa7x-gyd4"},{"vulnerability":"VCID-yn3p-7hnq-13hv"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-za4f-bm16-j7ba"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.24.0"}],"aliases":["CVE-2011-3389"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-x6pd-2arc-gqdq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/53038?format=json","vulnerability_id":"VCID-xq5h-af6j-r3fa","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5419.json","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5419.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5419","reference_id":"","reference_type":"","scores":[{"value":"0.01912","scoring_system":"epss","scoring_elements":"0.83601","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5419"},{"reference_url":"https://curl.se/docs/CVE-2016-5419.html","reference_id":"","reference_type":"","scores":[{"value":"High","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2016-5419.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5419","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5419"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5420","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5420"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5421","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5421"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1362183","reference_id":"1362183","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1362183"},{"reference_url":"https://security.gentoo.org/glsa/201701-47","reference_id":"GLSA-201701-47","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201701-47"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2575","reference_id":"RHSA-2016:2575","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2575"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2957","reference_id":"RHSA-2016:2957","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2957"},{"reference_url":"https://usn.ubuntu.com/3048-1/","reference_id":"USN-3048-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3048-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376386?format=json","purl":"pkg:generic/curl.se/curl@7.50.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-2x3m-p3eu-y7cn"},{"vulnerability":"VCID-3m3q-mxu4-9uhh"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-8kzz-y6n1-97cv"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-fz2p-bn31-2yha"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qxf1-m33c-3kbq"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.50.1"}],"aliases":["CVE-2016-5419"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xq5h-af6j-r3fa"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/45257?format=json","vulnerability_id":"VCID-y1dj-ashm-ryha","summary":"curl: TELNET stack contents disclosure","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22898.json","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22898.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22898","reference_id":"","reference_type":"","scores":[{"value":"0.00137","scoring_system":"epss","scoring_elements":"0.33327","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22898"},{"reference_url":"https://curl.se/docs/CVE-2021-22898.html","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/"}],"url":"https://curl.se/docs/CVE-2021-22898.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://hackerone.com/reports/1176461","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/"}],"url":"https://hackerone.com/reports/1176461"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1964887","reference_id":"1964887","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1964887"},{"reference_url":"https://github.com/curl/curl/commit/39ce47f219b09c380b81f89fe54ac586c8db6bde","reference_id":"39ce47f219b09c380b81f89fe54ac586c8db6bde","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/"}],"url":"https://github.com/curl/curl/commit/39ce47f219b09c380b81f89fe54ac586c8db6bde"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/07/21/4","reference_id":"4","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/07/21/4"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989228","reference_id":"989228","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989228"},{"reference_url":"https://security.archlinux.org/ASA-202106-4","reference_id":"ASA-202106-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202106-4"},{"reference_url":"https://security.archlinux.org/ASA-202106-5","reference_id":"ASA-202106-5","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202106-5"},{"reference_url":"https://security.archlinux.org/ASA-202106-6","reference_id":"ASA-202106-6","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202106-6"},{"reference_url":"https://security.archlinux.org/ASA-202106-7","reference_id":"ASA-202106-7","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202106-7"},{"reference_url":"https://security.archlinux.org/ASA-202106-8","reference_id":"ASA-202106-8","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202106-8"},{"reference_url":"https://security.archlinux.org/ASA-202106-9","reference_id":"ASA-202106-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202106-9"},{"reference_url":"https://security.archlinux.org/AVG-1995","reference_id":"AVG-1995","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1995"},{"reference_url":"https://security.archlinux.org/AVG-1996","reference_id":"AVG-1996","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1996"},{"reference_url":"https://security.archlinux.org/AVG-1997","reference_id":"AVG-1997","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1997"},{"reference_url":"https://security.archlinux.org/AVG-1998","reference_id":"AVG-1998","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1998"},{"reference_url":"https://security.archlinux.org/AVG-1999","reference_id":"AVG-1999","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1999"},{"reference_url":"https://security.archlinux.org/AVG-2000","reference_id":"AVG-2000","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2000"},{"reference_url":"https://www.debian.org/security/2022/dsa-5197","reference_id":"dsa-5197","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/"}],"url":"https://www.debian.org/security/2022/dsa-5197"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/","reference_id":"FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/"},{"reference_url":"https://security.gentoo.org/glsa/202105-36","reference_id":"GLSA-202105-36","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202105-36"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/08/msg00017.html","reference_id":"msg00017.html","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/08/msg00017.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html","reference_id":"msg00017.html","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/POOC3UV7V6L4CJ5KA2PTWTNUV5Y72T3Q/","reference_id":"POOC3UV7V6L4CJ5KA2PTWTNUV5Y72T3Q","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/POOC3UV7V6L4CJ5KA2PTWTNUV5Y72T3Q/"},{"reference_url":"https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c%40%3Cissues.guacamole.apache.org%3E","reference_id":"rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c%40%3Cissues.guacamole.apache.org%3E","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/"}],"url":"https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c%40%3Cissues.guacamole.apache.org%3E"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4511","reference_id":"RHSA-2021:4511","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4511"},{"reference_url":"https://usn.ubuntu.com/5021-1/","reference_id":"USN-5021-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5021-1/"},{"reference_url":"https://usn.ubuntu.com/5021-2/","reference_id":"USN-5021-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5021-2/"},{"reference_url":"https://usn.ubuntu.com/5894-1/","reference_id":"USN-5894-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5894-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376428?format=json","purl":"pkg:generic/curl.se/curl@7.77.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-32gj-mvnb-rudh"},{"vulnerability":"VCID-3dn4-6jtb-kqhk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-4pzm-87dd-xqbs"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689c-z62z-ukc7"},{"vulnerability":"VCID-71rt-1h3a-jkcm"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e1rm-18vc-rkc2"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-f8uz-dv1e-kkab"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-frj4-zf2v-87g2"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-ku14-1pmr-pbbd"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-nmwe-9bw8-2ud1"},{"vulnerability":"VCID-p2p1-bs19-53hd"},{"vulnerability":"VCID-p6hr-p4dr-cyh7"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qteb-88n4-5ka7"},{"vulnerability":"VCID-r1c8-6w99-kqgc"},{"vulnerability":"VCID-r4re-xx26-2kgm"},{"vulnerability":"VCID-sd8m-enmc-muhn"},{"vulnerability":"VCID-srgc-rxj3-6ydd"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v13d-ffaa-hyd9"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-y7c7-w2ru-gbhm"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.77.0"}],"aliases":["CVE-2021-22898"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y1dj-ashm-ryha"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/53061?format=json","vulnerability_id":"VCID-y1e8-qv34-juf8","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8617.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8617.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8617","reference_id":"","reference_type":"","scores":[{"value":"0.00085","scoring_system":"epss","scoring_elements":"0.24688","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8617"},{"reference_url":"https://curl.se/docs/CVE-2016-8617.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2016-8617.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv2","scoring_elements":"AV:L/AC:H/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"http://www.securitytracker.com/id/1037192","reference_id":"1037192","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/"}],"url":"http://www.securitytracker.com/id/1037192"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1388377","reference_id":"1388377","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1388377"},{"reference_url":"http://www.securityfocus.com/bid/94097","reference_id":"94097","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/"}],"url":"http://www.securityfocus.com/bid/94097"},{"reference_url":"https://curl.haxx.se/docs/adv_20161102C.html","reference_id":"adv_20161102C.html","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/"}],"url":"https://curl.haxx.se/docs/adv_20161102C.html"},{"reference_url":"https://security.archlinux.org/ASA-201611-10","reference_id":"ASA-201611-10","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-10"},{"reference_url":"https://security.archlinux.org/ASA-201611-4","reference_id":"ASA-201611-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-4"},{"reference_url":"https://security.archlinux.org/ASA-201611-5","reference_id":"ASA-201611-5","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-5"},{"reference_url":"https://security.archlinux.org/ASA-201611-7","reference_id":"ASA-201611-7","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-7"},{"reference_url":"https://security.archlinux.org/ASA-201611-8","reference_id":"ASA-201611-8","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-8"},{"reference_url":"https://security.archlinux.org/ASA-201611-9","reference_id":"ASA-201611-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-9"},{"reference_url":"https://security.archlinux.org/AVG-60","reference_id":"AVG-60","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-60"},{"reference_url":"https://security.archlinux.org/AVG-61","reference_id":"AVG-61","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-61"},{"reference_url":"https://security.archlinux.org/AVG-62","reference_id":"AVG-62","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-62"},{"reference_url":"https://security.archlinux.org/AVG-63","reference_id":"AVG-63","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-63"},{"reference_url":"https://security.archlinux.org/AVG-65","reference_id":"AVG-65","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-65"},{"reference_url":"https://security.archlinux.org/AVG-66","reference_id":"AVG-66","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-66"},{"reference_url":"https://curl.haxx.se/CVE-2016-8617.patch","reference_id":"CVE-2016-8617.patch","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/"}],"url":"https://curl.haxx.se/CVE-2016-8617.patch"},{"reference_url":"https://security.gentoo.org/glsa/201701-47","reference_id":"GLSA-201701-47","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/"}],"url":"https://security.gentoo.org/glsa/201701-47"},{"reference_url":"https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E","reference_id":"r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/"}],"url":"https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E","reference_id":"rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/"}],"url":"https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2486","reference_id":"RHSA-2018:2486","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/"}],"url":"https://access.redhat.com/errata/RHSA-2018:2486"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8617","reference_id":"show_bug.cgi?id=CVE-2016-8617","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8617"},{"reference_url":"https://www.tenable.com/security/tns-2016-21","reference_id":"tns-2016-21","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/"}],"url":"https://www.tenable.com/security/tns-2016-21"},{"reference_url":"https://usn.ubuntu.com/3123-1/","reference_id":"USN-3123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3123-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376389?format=json","purl":"pkg:generic/curl.se/curl@7.51.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-2x3m-p3eu-y7cn"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-fz2p-bn31-2yha"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0"}],"aliases":["CVE-2016-8617"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y1e8-qv34-juf8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/69051?format=json","vulnerability_id":"VCID-y841-wa7x-gyd4","summary":"curl: re-use of wrong HTTP NTLM connection in libcurl","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0015.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0015.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-0015","reference_id":"","reference_type":"","scores":[{"value":"0.01266","scoring_system":"epss","scoring_elements":"0.79769","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-0015"},{"reference_url":"https://curl.se/docs/CVE-2014-0015.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2014-0015.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0015","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0015"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"2.1","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:S/C:P/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1053903","reference_id":"1053903","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1053903"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0561","reference_id":"RHSA-2014:0561","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0561"},{"reference_url":"https://usn.ubuntu.com/2097-1/","reference_id":"USN-2097-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2097-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376366?format=json","purl":"pkg:generic/curl.se/curl@7.35.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-3m3q-mxu4-9uhh"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-72pz-4qf7-xfdb"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8kzz-y6n1-97cv"},{"vulnerability":"VCID-958x-aqdm-27br"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9ck1-b1zb-euad"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-b8jv-hnb7-eqfc"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-dcuk-131b-pbgp"},{"vulnerability":"VCID-ddtt-b7y9-ubgn"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-gme9-9d93-8bgk"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-m3hp-gvpn-4kea"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-njfg-99cj-cfh4"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-p9gw-tfvj-xfb7"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qc6p-1m1y-a3ar"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qrrf-z64u-zkck"},{"vulnerability":"VCID-qxf1-m33c-3kbq"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-snt9-bpy7-pqhd"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-t49y-2csd-q7c9"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uq2h-5uqp-rfbg"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v3w9-aq2q-6kdd"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-yn3p-7hnq-13hv"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-za4f-bm16-j7ba"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.35.0"}],"aliases":["CVE-2014-0015"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y841-wa7x-gyd4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/67276?format=json","vulnerability_id":"VCID-yn3p-7hnq-13hv","summary":"curl: re-using authenticated connection when unauthenticated","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3143.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3143.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-3143","reference_id":"","reference_type":"","scores":[{"value":"0.04659","scoring_system":"epss","scoring_elements":"0.8948","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-3143"},{"reference_url":"https://curl.se/docs/CVE-2015-3143.html","reference_id":"","reference_type":"","scores":[{"value":"Medium","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2015-3143.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3143","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3143"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3148","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3148"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1213306","reference_id":"1213306","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1213306"},{"reference_url":"https://security.gentoo.org/glsa/201509-02","reference_id":"GLSA-201509-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201509-02"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:1254","reference_id":"RHSA-2015:1254","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:1254"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:2159","reference_id":"RHSA-2015:2159","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:2159"},{"reference_url":"https://usn.ubuntu.com/2591-1/","reference_id":"USN-2591-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2591-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376374?format=json","purl":"pkg:generic/curl.se/curl@7.42.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-3m3q-mxu4-9uhh"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-72pz-4qf7-xfdb"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-8kzz-y6n1-97cv"},{"vulnerability":"VCID-958x-aqdm-27br"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-m3hp-gvpn-4kea"},{"vulnerability":"VCID-mw8z-vyq4-5kf3"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-p9gw-tfvj-xfb7"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qxf1-m33c-3kbq"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uq2h-5uqp-rfbg"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vqf9-y6k7-f7bt"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-za4f-bm16-j7ba"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.42.0"}],"aliases":["CVE-2015-3143"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yn3p-7hnq-13hv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/41344?format=json","vulnerability_id":"VCID-z4n7-e83t-hucq","summary":"curl: Incorrect handling of control code characters in cookies","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-35252.json","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-35252.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-35252","reference_id":"","reference_type":"","scores":[{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52523","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-35252"},{"reference_url":"https://curl.se/docs/CVE-2022-35252.html","reference_id":"","reference_type":"","scores":[{"value":"Low","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2022-35252.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35252","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35252"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://hackerone.com/reports/1613943","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/"}],"url":"https://hackerone.com/reports/1613943"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1018831","reference_id":"1018831","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1018831"},{"reference_url":"http://seclists.org/fulldisclosure/2023/Jan/20","reference_id":"20","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/"}],"url":"http://seclists.org/fulldisclosure/2023/Jan/20"},{"reference_url":"http://seclists.org/fulldisclosure/2023/Jan/21","reference_id":"21","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/"}],"url":"http://seclists.org/fulldisclosure/2023/Jan/21"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2120718","reference_id":"2120718","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2120718"},{"reference_url":"https://security.gentoo.org/glsa/202212-01","reference_id":"GLSA-202212-01","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/"}],"url":"https://security.gentoo.org/glsa/202212-01"},{"reference_url":"https://support.apple.com/kb/HT213603","reference_id":"HT213603","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/"}],"url":"https://support.apple.com/kb/HT213603"},{"reference_url":"https://support.apple.com/kb/HT213604","reference_id":"HT213604","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/"}],"url":"https://support.apple.com/kb/HT213604"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html","reference_id":"msg00028.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20220930-0005/","reference_id":"ntap-20220930-0005","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/"}],"url":"https://security.netapp.com/advisory/ntap-20220930-0005/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8840","reference_id":"RHSA-2022:8840","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8840"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8841","reference_id":"RHSA-2022:8841","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8841"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2478","reference_id":"RHSA-2023:2478","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2478"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2963","reference_id":"RHSA-2023:2963","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2963"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0428","reference_id":"RHSA-2024:0428","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0428"},{"reference_url":"https://usn.ubuntu.com/5587-1/","reference_id":"USN-5587-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5587-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376438?format=json","purl":"pkg:generic/curl.se/curl@7.85.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-32gj-mvnb-rudh"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-4pzm-87dd-xqbs"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-5jsn-ubxh-fqe4"},{"vulnerability":"VCID-5stq-jajr-57hv"},{"vulnerability":"VCID-689c-z62z-ukc7"},{"vulnerability":"VCID-71rt-1h3a-jkcm"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-adkw-dnqu-6ffy"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-e1rm-18vc-rkc2"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ehmp-5g2e-eqfk"},{"vulnerability":"VCID-frj4-zf2v-87g2"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-ku14-1pmr-pbbd"},{"vulnerability":"VCID-nhst-thye-guh2"},{"vulnerability":"VCID-nmwe-9bw8-2ud1"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qteb-88n4-5ka7"},{"vulnerability":"VCID-r1c8-6w99-kqgc"},{"vulnerability":"VCID-r4re-xx26-2kgm"},{"vulnerability":"VCID-sd8m-enmc-muhn"},{"vulnerability":"VCID-srgc-rxj3-6ydd"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-ujr4-yect-subh"},{"vulnerability":"VCID-v13d-ffaa-hyd9"},{"vulnerability":"VCID-w2fp-rb4q-kke3"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.85.0"}],"aliases":["CVE-2022-35252"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z4n7-e83t-hucq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/67258?format=json","vulnerability_id":"VCID-za4f-bm16-j7ba","summary":"curl: sensitive HTTP server headers also sent to proxies","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3153.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3153.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-3153","reference_id":"","reference_type":"","scores":[{"value":"0.08372","scoring_system":"epss","scoring_elements":"0.92428","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-3153"},{"reference_url":"https://curl.se/docs/CVE-2015-3153.html","reference_id":"","reference_type":"","scores":[{"value":"High","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2015-3153.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3153","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3153"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1217341","reference_id":"1217341","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1217341"},{"reference_url":"https://usn.ubuntu.com/2591-1/","reference_id":"USN-2591-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2591-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376375?format=json","purl":"pkg:generic/curl.se/curl@7.42.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-14cb-wnj7-13e2"},{"vulnerability":"VCID-257w-bhnj-kugq"},{"vulnerability":"VCID-2bvs-a5w1-gfhe"},{"vulnerability":"VCID-2nqm-34t9-eqcr"},{"vulnerability":"VCID-3m3q-mxu4-9uhh"},{"vulnerability":"VCID-3xnn-1yr9-4qdk"},{"vulnerability":"VCID-4563-62mm-57aq"},{"vulnerability":"VCID-46wr-p8c4-x7he"},{"vulnerability":"VCID-4nqj-8xk6-a7ha"},{"vulnerability":"VCID-58v1-7e86-skcr"},{"vulnerability":"VCID-5hb5-9gh5-kyfs"},{"vulnerability":"VCID-689h-1jnp-yfbr"},{"vulnerability":"VCID-6jpy-xpur-abc7"},{"vulnerability":"VCID-6pbt-tvzv-nqc5"},{"vulnerability":"VCID-72pz-4qf7-xfdb"},{"vulnerability":"VCID-777y-dgxh-kba5"},{"vulnerability":"VCID-7wd8-zrdf-gkc6"},{"vulnerability":"VCID-84u3-ynnu-7kct"},{"vulnerability":"VCID-8f6k-xr87-uqfz"},{"vulnerability":"VCID-8k4c-jcmk-xkdc"},{"vulnerability":"VCID-8kzz-y6n1-97cv"},{"vulnerability":"VCID-958x-aqdm-27br"},{"vulnerability":"VCID-97n5-5pa2-rqhz"},{"vulnerability":"VCID-9mnp-4p5a-ybcn"},{"vulnerability":"VCID-a2hy-wacd-37ht"},{"vulnerability":"VCID-ab48-azj9-p3hq"},{"vulnerability":"VCID-age7-hx9p-fya2"},{"vulnerability":"VCID-av4m-zmbd-1bdu"},{"vulnerability":"VCID-ay4r-g4gd-pbfh"},{"vulnerability":"VCID-b656-14j2-dbdn"},{"vulnerability":"VCID-bnr9-9qa9-vfab"},{"vulnerability":"VCID-bu5q-p482-kbd2"},{"vulnerability":"VCID-c7r3-5s6m-5ua1"},{"vulnerability":"VCID-cczp-jbr5-j3g1"},{"vulnerability":"VCID-d1pj-eqmw-9ya1"},{"vulnerability":"VCID-dvru-kxex-aqfa"},{"vulnerability":"VCID-e66v-z214-5kdt"},{"vulnerability":"VCID-e6s1-4q8v-yfdp"},{"vulnerability":"VCID-eh7z-2y2q-efbc"},{"vulnerability":"VCID-ejxm-x6yh-duam"},{"vulnerability":"VCID-estk-jscu-67cg"},{"vulnerability":"VCID-f23g-nbn2-6bac"},{"vulnerability":"VCID-fbr5-4t5f-bkaz"},{"vulnerability":"VCID-fqsr-v5rs-4ygc"},{"vulnerability":"VCID-ftpd-hkjh-6udf"},{"vulnerability":"VCID-fvrp-ctdg-kqah"},{"vulnerability":"VCID-guzm-25ur-qkgz"},{"vulnerability":"VCID-h4ad-94qh-ufhy"},{"vulnerability":"VCID-h6tz-3ztg-byhr"},{"vulnerability":"VCID-hpqq-n6y2-suf3"},{"vulnerability":"VCID-jj7m-un1g-8uan"},{"vulnerability":"VCID-jukq-4rsf-f7hb"},{"vulnerability":"VCID-k232-kks1-hygq"},{"vulnerability":"VCID-k93r-eqgb-fqgq"},{"vulnerability":"VCID-kmd7-ntaa-ffcv"},{"vulnerability":"VCID-m3hp-gvpn-4kea"},{"vulnerability":"VCID-mw8z-vyq4-5kf3"},{"vulnerability":"VCID-n38z-qhum-ffgs"},{"vulnerability":"VCID-ngrp-9xg2-g7cw"},{"vulnerability":"VCID-nuef-bv37-hfaz"},{"vulnerability":"VCID-p9gw-tfvj-xfb7"},{"vulnerability":"VCID-pru2-7vs6-ryf4"},{"vulnerability":"VCID-ptdk-wtvg-zkaw"},{"vulnerability":"VCID-qax6-9qcb-6yah"},{"vulnerability":"VCID-qj2x-z183-q7dk"},{"vulnerability":"VCID-qkp2-se93-mka8"},{"vulnerability":"VCID-qqyy-ejjy-zugp"},{"vulnerability":"VCID-qxf1-m33c-3kbq"},{"vulnerability":"VCID-rkdx-swyp-n7a2"},{"vulnerability":"VCID-rxqn-hx8b-4ket"},{"vulnerability":"VCID-ss8u-8s2v-dkf4"},{"vulnerability":"VCID-suuf-58uw-xucs"},{"vulnerability":"VCID-tcq7-bk2f-ekdh"},{"vulnerability":"VCID-tzhd-pvxj-gqfy"},{"vulnerability":"VCID-u1yn-scjj-qkc8"},{"vulnerability":"VCID-uq2h-5uqp-rfbg"},{"vulnerability":"VCID-uws8-s9se-nyay"},{"vulnerability":"VCID-v54z-4tb3-qkh2"},{"vulnerability":"VCID-vhq1-me6w-uqfm"},{"vulnerability":"VCID-vqf9-y6k7-f7bt"},{"vulnerability":"VCID-vs4f-hsgz-cyby"},{"vulnerability":"VCID-vs5f-8tuz-b7ev"},{"vulnerability":"VCID-vvsu-pcba-qfh6"},{"vulnerability":"VCID-xapd-mgwu-67b3"},{"vulnerability":"VCID-xq5h-af6j-r3fa"},{"vulnerability":"VCID-y1dj-ashm-ryha"},{"vulnerability":"VCID-y1e8-qv34-juf8"},{"vulnerability":"VCID-z46c-bshd-zuf1"},{"vulnerability":"VCID-z4n7-e83t-hucq"},{"vulnerability":"VCID-z7nt-pckd-pua8"},{"vulnerability":"VCID-zgz2-mscv-sqhu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.42.1"}],"aliases":["CVE-2015-3153"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-za4f-bm16-j7ba"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.12.2"}