haxx
181 tracked vulnerabilities.
CVE-2019-5443
HIGH
curl <= 7.65.1 - Uncontrolled Search Path Element via OpenSSL Engine Config
Jul 02, 2019
CVSS 7.8
EPSS 0.01
CVE-2019-5436
HIGH
libcurl 7.19.4-7.64.1 - Heap-based Buffer Overflow in TFTP Receiving Code
May 28, 2019
CVSS 7.8
EPSS 0.15
CVE-2019-5435
LOW
curl 7.62.0-7.64.1 - Integer Overflow Buffer Overflow in URL API
May 28, 2019
CVSS 3.7
EPSS 0.00
CVE-2019-3823
MEDIUM
libcurl 7.34.0-7.63.0 - Heap Out-of-Bounds Read in SMTP Response Handler
Feb 06, 2019
CVSS 4.3
EPSS 0.02
CVE-2019-3822
CRITICAL
libcurl 7.36.0-7.63.0 - Stack-based Buffer Overflow in NTLM Type-3 Header Generation
Feb 06, 2019
CVSS 9.8
EPSS 0.18
CVE-2018-16890
HIGH
libcurl <7.64.0 - Memory Corruption
Feb 06, 2019
CVSS 7.5
EPSS 0.01
CVE-2018-16842
MEDIUM
curl 7.14.1-7.61.1 - Heap-Based Buffer Over-Read in voutf
Oct 31, 2018
CVSS 4.4
EPSS 0.00
CVE-2018-16840
CRITICAL
curl 7.59.0-7.61.1 - Use-After-Free in Easy Handle Cleanup
Oct 31, 2018
CVSS 9.8
EPSS 0.00
CVE-2018-16839
MEDIUM
curl 7.33.0-7.61.1 - Denial of Service via SASL Authentication Buffer Overrun
Oct 31, 2018
CVSS 4.3
EPSS 0.00
CVE-2018-14618
HIGH
libcurl < 7.61.1 - Heap Buffer Overflow via NTLM Authentication Password Length
Sep 05, 2018
CVSS 7.5
EPSS 0.00
CVE-2018-0500
CRITICAL
curl 7.54.1-7.60.0 - Heap-Based Buffer Overflow in SMTP Data Transmission
Jul 11, 2018
CVSS 9.8
EPSS 0.01
CVE-2018-1000301
CRITICAL
curl <7.59.0 - Buffer Over-read
May 24, 2018
CVSS 9.1
EPSS 0.03
CVE-2018-1000300
CRITICAL
curl 7.54.1-7.59.0 - Heap-based Buffer Overflow via FTP Server Command Reply
May 24, 2018
CVSS 9.8
EPSS 0.01
CVE-2018-1000122
CRITICAL
curl <7.59 - Buffer Overflow
Mar 14, 2018
CVSS 9.1
EPSS 0.02
CVE-2018-1000121
HIGH
curl <7.59 - Denial of Service
Mar 14, 2018
CVSS 7.5
EPSS 0.03
CVE-2018-1000120
CRITICAL
curl <7.58.0 - Buffer Overflow
Mar 14, 2018
CVSS 9.8
EPSS 0.01
CVE-2018-1000007
CRITICAL
libcurl 7.1-7.57.0 - Authentication Data Leak via Redirect Header Handling
Jan 24, 2018
CVSS 9.8
EPSS 0.04
CVE-2018-1000005
CRITICAL
libcurl 7.49.0-7.57.0 - Out-of-bounds Read in HTTP/2 Trailer Handling
Jan 24, 2018
CVSS 9.1
EPSS 0.00
CVE-2017-2629
MEDIUM
curl < 7.53.0 - Improper TLS Certificate Validation via Status Request Extension
Jul 27, 2018
CVSS 4.3
EPSS 0.01
CVE-2017-7468
MEDIUM
libcurl 7.52.0-7.53.1 - TLS Session Resumption with Changed Client Certificate
Jul 16, 2018
CVSS 4.8
EPSS 0.01
CVE-2017-2628
CRITICAL
curl < 7.19.7-53 - Improper Authentication
Mar 12, 2018
CVSS 9.8
EPSS 0.01
CVE-2017-8818
CRITICAL
curl and libcurl < 7.57.0 - Denial of Service via Memory Allocation Error
Nov 29, 2017
CVSS 9.8
EPSS 0.01
CVE-2017-8817
CRITICAL
curl and libcurl < 7.57.0 - Out-of-bounds Read via FTP Wildcard String
Nov 29, 2017
CVSS 9.8
EPSS 0.01
CVE-2017-8816
CRITICAL
curl and libcurl < 7.57.0 - Denial of Service via NTLM Authentication Integer Overflow
Nov 29, 2017
CVSS 9.8
EPSS 0.00
CVE-2017-1000257
CRITICAL
libcurl 7.20.0-7.55.1 - Heap-Based Buffer Over-Read via IMAP FETCH Response
Oct 31, 2017
CVSS 9.1
EPSS 0.01
Products
Quick Filters