haxx

CVE-2016-5420 HIGH

Debian Linux < 7.50.0 - Improper Authorization

Aug 10, 2016

CVSS 7.5

EPSS 0.01

CVE-2016-5419 HIGH

libcurl < 7.50.1 - TLS Session Resumption Bypass via Changed Client Certificate

Aug 10, 2016

CVSS 7.5

EPSS 0.02

CVE-2016-4802 HIGH

curl < 7.49.1 - Untrusted Search Path Vulnerability via DLL Hijacking

Jun 24, 2016

CVSS 7.8

EPSS 0.01

CVE-2016-3739 MEDIUM

curl < 7.49.0 - Server Spoofing via Arbitrary Valid Certificate

May 20, 2016

CVSS 5.3

EPSS 0.01

CVE-2016-0755 HIGH

curl < 7.47.0 - Improper Authentication via NTLM Proxy Connection Reuse

Jan 29, 2016

CVSS 7.3

EPSS 0.00

CVE-2016-0754 MEDIUM

curl < 7.46.0 - Arbitrary File Write via Colon in Remote File Name

Jan 29, 2016

CVSS 5.3

EPSS 0.00

CVE-2015-3237

cURL & libcurl <7.43 - Info Disclosure/DoS

Jun 22, 2015

EPSS 0.05

CVE-2015-3236

cURL & libcurl <7.43 - Info Disclosure

Jun 22, 2015

EPSS 0.05

CVE-2015-3153

cURL <7.42.1 - Info Disclosure

May 01, 2015

EPSS 0.08

CVE-2015-3148

cURL & libcurl <7.42 - Auth Bypass

Apr 24, 2015

EPSS 0.01

CVE-2015-3145

cURL/libcurl <7.42 - DoS

Apr 24, 2015

EPSS 0.68

CVE-2015-3144

Oracle MySQL Enterprise Monitor < 2.3.20 - Denial of Service via Zero-Length Hostname

Apr 24, 2015

EPSS 0.01

CVE-2015-3143

cURL & libcurl <7.42 - Open Redirect

Apr 24, 2015

EPSS 0.05

CVE-2014-8151

libcurl <7.39.0 - Man-in-the-Middle Attack

Jan 15, 2015

EPSS 0.00

CVE-2014-8150

libcurl <7.40.0 - Code Injection

Jan 15, 2015

EPSS 0.01

CVE-2014-3620

curl and libcurl < 7.38.0 - Cookie Domain Validation Bypass

Nov 18, 2014

EPSS 0.01

CVE-2014-3613

curl and libcurl < 7.37.1 - Cookie Domain Validation Bypass via IP Address Handling

Nov 18, 2014

EPSS 0.02

CVE-2014-3707

Canonical Ubuntu Linux - Information Disclosure

Nov 15, 2014

EPSS 0.00

CVE-2014-2522

curl and libcurl <7.35.0 - SSL/TLS Man-in-the-Middle

Apr 18, 2014

EPSS 0.00

CVE-2014-0139

cURL and libcurl <7.36.0 - Info Disclosure

Apr 15, 2014

EPSS 0.02

CVE-2014-0138

cURL/libcurl <7.36.0 - Open Redirect

Apr 15, 2014

EPSS 0.01

CVE-2014-0015

libcurl 7.10.6-7.34.0 - Improper Authentication via NTLM Connection Reuse

Feb 02, 2014

EPSS 0.01

CVE-2013-6422

Debian Linux - Improper Input Validation

Dec 23, 2013

EPSS 0.00

CVE-2013-4545

cURL & libcurl <7.33 - SSL Spoofing

Nov 23, 2013

EPSS 0.00

CVE-2013-2174

curl 7.7-7.30.0 - Heap-Based Buffer Overflow via Crafted String Ending in Percent Character

Jul 31, 2013

EPSS 0.03