VulnerableCode Vulnerability Details

System	Score	Found at
rhas	Moderate	https://access.redhat.com/errata/RHSA-2013:0771
epss	0.00758	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.00758	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.00758	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.00758	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.00758	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.00758	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.00758	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.00758	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.00758	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.00758	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.00758	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.00758	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.01615	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.01615	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.01615	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.01615	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.02482	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.03496	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
epss	0.09664	https://api.first.org/data/v1/epss?cve=CVE-2013-1944
cvssv3.1	High	https://curl.se/docs/CVE-2013-1944.html
cvssv2	5.0	https://nvd.nist.gov/vuln/detail/CVE-2013-1944

Vulnerability ID	VCID-8vdj-ufba-aaae
Aliases	CVE-2013-1944
Summary	The tailMatch function in cookie.c in cURL and libcurl before 7.30.0 does not properly match the path domain when sending cookies, which allows remote attackers to steal cookies via a matching suffix in the domain of a URL.
Status	Published
Exploitability	0.5
Weighted Severity	6.2
Risk	3.1
Affected and Fixed Packages	Package Details

CWE-200	Exposure of Sensitive Information to an Unauthorized Actor
CWE-201	Insertion of Sensitive Information Into Sent Data

Percentile	0.81521
EPSS Score	0.00758
Published At	Nov. 1, 2024, midnight