VulnerableCode Package Details - pkg:generic/curl.se/curl@8.19.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:generic/curl.se/curl@8.19.0

Essentials
History (4)

purl	pkg:generic/curl.se/curl@8.19.0

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (4)

Vulnerability	Summary	Aliases
VCID-2cx5-1qnw-uufj	curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication	CVE-2026-1965
VCID-8zks-th64-33b8	curl: curl: Unauthorized access due to improper HTTP proxy connection reuse	CVE-2026-3784
VCID-amgy-dw6h-6ydf	curl: curl: Arbitrary code execution or Denial of Service via use-after-free in SMB request handling	CVE-2026-3805
VCID-etzn-uhck-h7b2	curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect	CVE-2026-3783

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T18:21:14.511332+00:00	Curl Importer	Fixing	VCID-2cx5-1qnw-uufj	https://curl.se/docs/CVE-2026-1965.json	38.0.0
2026-04-01T18:21:13.869411+00:00	Curl Importer	Fixing	VCID-etzn-uhck-h7b2	https://curl.se/docs/CVE-2026-3783.json	38.0.0
2026-04-01T18:21:13.455954+00:00	Curl Importer	Fixing	VCID-8zks-th64-33b8	https://curl.se/docs/CVE-2026-3784.json	38.0.0
2026-04-01T18:21:12.567129+00:00	Curl Importer	Fixing	VCID-amgy-dw6h-6ydf	https://curl.se/docs/CVE-2026-3805.json	38.0.0