Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-xspf-45t1-2uhf
Vulnerability ID VCID-xspf-45t1-2uhf
Aliases CVE-2015-3143
Summary Multiple vulnerabilities have been found in cURL, the worst of which can allow remote attackers to cause Denial of Service condition.
Status Published
Exploitability 0.5
Weighted Severity 4.8
Risk 2.4
Affected and Fixed Packages Package Details
Weaknesses (2)
CWE-287 Improper Authentication
CWE-305 Authentication Bypass by Primary Weakness
System Score Found at
epss 0.03475 https://api.first.org/data/v1/epss?cve=CVE-2015-3143
epss 0.03475 https://api.first.org/data/v1/epss?cve=CVE-2015-3143
epss 0.03475 https://api.first.org/data/v1/epss?cve=CVE-2015-3143
epss 0.03475 https://api.first.org/data/v1/epss?cve=CVE-2015-3143
epss 0.03475 https://api.first.org/data/v1/epss?cve=CVE-2015-3143
epss 0.03475 https://api.first.org/data/v1/epss?cve=CVE-2015-3143
epss 0.03475 https://api.first.org/data/v1/epss?cve=CVE-2015-3143
epss 0.03475 https://api.first.org/data/v1/epss?cve=CVE-2015-3143
epss 0.03475 https://api.first.org/data/v1/epss?cve=CVE-2015-3143
cvssv3.1 Medium https://curl.se/docs/CVE-2015-3143.html
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3143.json
https://api.first.org/data/v1/epss?cve=CVE-2015-3143
https://curl.se/docs/CVE-2015-3143.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3143
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3148
1213306 https://bugzilla.redhat.com/show_bug.cgi?id=1213306
GLSA-201509-02 https://security.gentoo.org/glsa/201509-02
RHSA-2015:1254 https://access.redhat.com/errata/RHSA-2015:1254
RHSA-2015:2159 https://access.redhat.com/errata/RHSA-2015:2159
USN-2591-1 https://usn.ubuntu.com/2591-1/
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.875
EPSS Score 0.03475
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:01:27.955631+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/201509-02 38.0.0