VulnerableCode Package Details - pkg:generic/curl.se/curl@8.18.0

Search for packages

Vulnerability	Summary	Fixed by
VCID-2cx5-1qnw-uufj Aliases: CVE-2026-1965	curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication	8.19.0 Affected by 0 other vulnerabilities.
VCID-8zks-th64-33b8 Aliases: CVE-2026-3784	curl: curl: Unauthorized access due to improper HTTP proxy connection reuse	8.19.0 Affected by 0 other vulnerabilities.
VCID-amgy-dw6h-6ydf Aliases: CVE-2026-3805	curl: curl: Arbitrary code execution or Denial of Service via use-after-free in SMB request handling	8.19.0 Affected by 0 other vulnerabilities.
VCID-etzn-uhck-h7b2 Aliases: CVE-2026-3783	curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect	8.19.0 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-2cx5-1qnw-uufj
Aliases:
CVE-2026-1965

curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication

8.19.0
Affected by 0 other vulnerabilities.

VCID-8zks-th64-33b8
Aliases:
CVE-2026-3784

curl: curl: Unauthorized access due to improper HTTP proxy connection reuse

8.19.0
Affected by 0 other vulnerabilities.

VCID-amgy-dw6h-6ydf
Aliases:
CVE-2026-3805

curl: curl: Arbitrary code execution or Denial of Service via use-after-free in SMB request handling

8.19.0
Affected by 0 other vulnerabilities.

VCID-etzn-uhck-h7b2
Aliases:
CVE-2026-3783

curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect

8.19.0
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-5xp7-mcsa-uqd4	When doing TLS related transfers with reused easy or multi handles and altering the `CURLSSLOPT_NO_PARTIALCHAIN` option, libcurl could accidentally reuse a CA store cached in memory for which the partial chain option was reversed. Contrary to the user's wishes and expectations. This could make libcurl find and accept a trust chain that it otherwise would not.	CVE-2025-14819
VCID-kt4b-7ffh-4bch	When using `CURLOPT_PINNEDPUBLICKEY` option with libcurl or `--pinnedpubkey` with the curl tool,curl should check the public key of the server certificate to verify the peer. This check was skipped in a certain condition that would then make curl allow the connection without performing the proper check, thus not noticing a possible impostor. To skip this check, the connection had to be done with QUIC with ngtcp2 built to use GnuTLS and the user had to explicitly disable the standard certificate verification.	CVE-2025-13034
VCID-mkyr-w79c-qqfz	curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers	CVE-2025-14017
VCID-nvzd-v3bs-6qek	When doing SSH-based transfers using either SCP or SFTP, and setting the known_hosts file, libcurl could still mistakenly accept connecting to hosts not present in the specified file if they were added as recognized in the libssh global known_hosts file.	CVE-2025-15079
VCID-vbbv-k1r7-kkas	When doing SSH-based transfers using either SCP or SFTP, and asked to do public key authentication, curl would wrongly still ask and authenticate using a locally running SSH agent.	CVE-2025-15224
VCID-x57x-w8g8-7ybz	When an OAuth2 bearer token is used for an HTTP(S) transfer, and that transfer performs a cross-protocol redirect to a second URL that uses an IMAP, LDAP, POP3 or SMTP scheme, curl might wrongly pass on the bearer token to the new target host.	CVE-2025-14524

Vulnerability

Summary

Aliases

VCID-5xp7-mcsa-uqd4

When doing TLS related transfers with reused easy or multi handles and altering the `CURLSSLOPT_NO_PARTIALCHAIN` option, libcurl could accidentally reuse a CA store cached in memory for which the partial chain option was reversed. Contrary to the user's wishes and expectations. This could make libcurl find and accept a trust chain that it otherwise would not.

CVE-2025-14819

VCID-kt4b-7ffh-4bch

When using `CURLOPT_PINNEDPUBLICKEY` option with libcurl or `--pinnedpubkey` with the curl tool,curl should check the public key of the server certificate to verify the peer. This check was skipped in a certain condition that would then make curl allow the connection without performing the proper check, thus not noticing a possible impostor. To skip this check, the connection had to be done with QUIC with ngtcp2 built to use GnuTLS and the user had to explicitly disable the standard certificate verification.

CVE-2025-13034

VCID-mkyr-w79c-qqfz

curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers

CVE-2025-14017

VCID-nvzd-v3bs-6qek

When doing SSH-based transfers using either SCP or SFTP, and setting the known_hosts file, libcurl could still mistakenly accept connecting to hosts *not present* in the specified file if they were added as recognized in the libssh *global* known_hosts file.

CVE-2025-15079

VCID-vbbv-k1r7-kkas

When doing SSH-based transfers using either SCP or SFTP, and asked to do public key authentication, curl would wrongly still ask and authenticate using a locally running SSH agent.

CVE-2025-15224

VCID-x57x-w8g8-7ybz

When an OAuth2 bearer token is used for an HTTP(S) transfer, and that transfer performs a cross-protocol redirect to a second URL that uses an IMAP, LDAP, POP3 or SMTP scheme, curl might wrongly pass on the bearer token to the new target host.

CVE-2025-14524

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T18:21:16.225343+00:00	Curl Importer	Fixing	VCID-kt4b-7ffh-4bch	https://curl.se/docs/CVE-2025-13034.json	38.0.0
2026-04-01T18:21:16.142372+00:00	Curl Importer	Fixing	VCID-mkyr-w79c-qqfz	https://curl.se/docs/CVE-2025-14017.json	38.0.0
2026-04-01T18:21:15.599123+00:00	Curl Importer	Fixing	VCID-x57x-w8g8-7ybz	https://curl.se/docs/CVE-2025-14524.json	38.0.0
2026-04-01T18:21:15.195197+00:00	Curl Importer	Fixing	VCID-5xp7-mcsa-uqd4	https://curl.se/docs/CVE-2025-14819.json	38.0.0
2026-04-01T18:21:15.065490+00:00	Curl Importer	Fixing	VCID-nvzd-v3bs-6qek	https://curl.se/docs/CVE-2025-15079.json	38.0.0
2026-04-01T18:21:14.795967+00:00	Curl Importer	Fixing	VCID-vbbv-k1r7-kkas	https://curl.se/docs/CVE-2025-15224.json	38.0.0
2026-04-01T18:21:14.507954+00:00	Curl Importer	Affected by	VCID-2cx5-1qnw-uufj	https://curl.se/docs/CVE-2026-1965.json	38.0.0
2026-04-01T18:21:13.866097+00:00	Curl Importer	Affected by	VCID-etzn-uhck-h7b2	https://curl.se/docs/CVE-2026-3783.json	38.0.0
2026-04-01T18:21:13.452362+00:00	Curl Importer	Affected by	VCID-8zks-th64-33b8	https://curl.se/docs/CVE-2026-3784.json	38.0.0
2026-04-01T18:21:12.562047+00:00	Curl Importer	Affected by	VCID-amgy-dw6h-6ydf	https://curl.se/docs/CVE-2026-3805.json	38.0.0