exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 17

CVE-2022-43552

почти 3 года назад

A use after free vulnerability exists in curl <7.87.0. Curl can be asked to *tunnel* virtually all protocols it supports through an HTTP proxy. HTTP proxies can (and often do) deny such tunnel operations. When getting denied to tunnel the specific protocols SMB or TELNET, curl would use a heap-allocated struct after it had been freed, in its transfer shutdown code path.

CVSS3: 5.9

EPSS: Низкий

CVE-2022-43552

почти 3 года назад

CVSS3: 5.9

EPSS: Низкий

CVE-2022-43552

почти 3 года назад

CVSS3: 5.9

EPSS: Низкий

CVE-2022-43552

больше 2 лет назад

A use after free vulnerability exists in curl <7.87.0. Curl can be asked to *tunnel* virtually all protocols it supports through an HTTP proxy. HTTP proxies can (and often do) deny such tunnel operations. When getting denied to tunnel the specific protocols SMB or TELNET curl would use a heap-allocated struct after it had been freed in its transfer shutdown code path.

CVSS3: 5.9

EPSS: Низкий

CVE-2022-43552

почти 3 года назад

A use after free vulnerability exists in curl <7.87.0. Curl can be ask ...

CVSS3: 5.9

EPSS: Низкий

SUSE-SU-2022:4633-1

почти 3 года назад

Security update for curl

EPSS: Низкий

SUSE-SU-2022:4598-1

почти 3 года назад

Security update for curl

EPSS: Низкий

ROS-20230414-24

больше 2 лет назад

Уязвимость libcurl

CVSS3: 5.9

EPSS: Низкий

ROS-20230414-04

больше 2 лет назад

Уязвимость curl

CVSS3: 5.9

EPSS: Низкий

GHSA-6342-4x32-pp8v

почти 3 года назад

CVSS3: 7.5

EPSS: Низкий

ELSA-2023-7743

почти 2 года назад

ELSA-2023-7743: curl security update (LOW)

EPSS: Низкий

BDU:2024-07332

около 3 лет назад

Уязвимость программного средства для взаимодействия с серверами CURL, связанная с использованием памяти после её освобождения, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 5.9

EPSS: Низкий

SUSE-SU-2022:4597-1

почти 3 года назад

Security update for curl

EPSS: Низкий

ELSA-2023-2963

больше 2 лет назад

ELSA-2023-2963: curl security and bug fix update (LOW)

EPSS: Низкий

ELSA-2023-2478

больше 2 лет назад

ELSA-2023-2478: curl security update (LOW)

EPSS: Низкий

SUSE-SU-2023:2228-1

больше 2 лет назад

Security update for curl

EPSS: Низкий

SUSE-SU-2023:2226-1

больше 2 лет назад

Security update for curl

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2022-43552 A use after free vulnerability exists in curl <7.87.0. Curl can be asked to tunnel virtually all protocols it supports through an HTTP proxy. HTTP proxies can (and often do) deny such tunnel operations. When getting denied to tunnel the specific protocols SMB or TELNET, curl would use a heap-allocated struct after it had been freed, in its transfer shutdown code path.	CVSS3: 5.9	0% Низкий	почти 3 года назад
CVE-2022-43552 A use after free vulnerability exists in curl <7.87.0. Curl can be asked to tunnel virtually all protocols it supports through an HTTP proxy. HTTP proxies can (and often do) deny such tunnel operations. When getting denied to tunnel the specific protocols SMB or TELNET, curl would use a heap-allocated struct after it had been freed, in its transfer shutdown code path.	CVSS3: 5.9	0% Низкий	почти 3 года назад
CVE-2022-43552 A use after free vulnerability exists in curl <7.87.0. Curl can be asked to tunnel virtually all protocols it supports through an HTTP proxy. HTTP proxies can (and often do) deny such tunnel operations. When getting denied to tunnel the specific protocols SMB or TELNET, curl would use a heap-allocated struct after it had been freed, in its transfer shutdown code path.	CVSS3: 5.9	0% Низкий	почти 3 года назад
CVE-2022-43552 A use after free vulnerability exists in curl <7.87.0. Curl can be asked to tunnel virtually all protocols it supports through an HTTP proxy. HTTP proxies can (and often do) deny such tunnel operations. When getting denied to tunnel the specific protocols SMB or TELNET curl would use a heap-allocated struct after it had been freed in its transfer shutdown code path.	CVSS3: 5.9	0% Низкий	больше 2 лет назад
CVE-2022-43552 A use after free vulnerability exists in curl <7.87.0. Curl can be ask ...	CVSS3: 5.9	0% Низкий	почти 3 года назад
SUSE-SU-2022:4633-1 Security update for curl		0% Низкий	почти 3 года назад
SUSE-SU-2022:4598-1 Security update for curl		0% Низкий	почти 3 года назад
ROS-20230414-24 Уязвимость libcurl	CVSS3: 5.9	0% Низкий	больше 2 лет назад
ROS-20230414-04 Уязвимость curl	CVSS3: 5.9	0% Низкий	больше 2 лет назад
GHSA-6342-4x32-pp8v A use after free vulnerability exists in curl <7.87.0. Curl can be asked to tunnel virtually all protocols it supports through an HTTP proxy. HTTP proxies can (and often do) deny such tunnel operations. When getting denied to tunnel the specific protocols SMB or TELNET, curl would use a heap-allocated struct after it had been freed, in its transfer shutdown code path.	CVSS3: 7.5	0% Низкий	почти 3 года назад
ELSA-2023-7743 ELSA-2023-7743: curl security update (LOW)			почти 2 года назад
BDU:2024-07332 Уязвимость программного средства для взаимодействия с серверами CURL, связанная с использованием памяти после её освобождения, позволяющая нарушителю вызвать отказ в обслуживании	CVSS3: 5.9	0% Низкий	около 3 лет назад
SUSE-SU-2022:4597-1 Security update for curl			почти 3 года назад
ELSA-2023-2963 ELSA-2023-2963: curl security and bug fix update (LOW)			больше 2 лет назад
ELSA-2023-2478 ELSA-2023-2478: curl security update (LOW)			больше 2 лет назад
SUSE-SU-2023:2228-1 Security update for curl			больше 2 лет назад
SUSE-SU-2023:2226-1 Security update for curl			больше 2 лет назад

Уязвимостей на страницу