Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
CURL-CVE-2025-13034
  • github.com/curl/curl.git
 No QUIC certificate pinning with GnuTLS yesterday
  • Fix available
CURL-CVE-2025-14017
  • github.com/curl/curl.git
 broken TLS options for threaded LDAPS yesterday
  • Fix available
CURL-CVE-2025-14819
  • github.com/curl/curl.git
 OpenSSL partial chain store policy bypass yesterday
  • Fix available
CURL-CVE-2025-15079
  • github.com/curl/curl.git
 libssh global known_hosts override yesterday
  • Fix available
CURL-CVE-2025-15224
  • github.com/curl/curl.git
 libssh key passphrase bypass without agent set yesterday
  • Fix available
CURL-CVE-2025-14524
  • github.com/curl/curl.git
 bearer token leak on cross-protocol redirect 2 days ago
  • Fix available
CURL-CVE-2025-10966
  • github.com/curl/curl.git
 missing SFTP host verification with wolfSSH 05 Nov 2025
  • Fix available
CURL-CVE-2025-10148
  • github.com/curl/curl.git
 predictable WebSocket mask 10 Sep 2025
  • Fix available
CURL-CVE-2025-9086
  • github.com/curl/curl.git
 Out of bounds read for cookie path 10 Sep 2025
  • Fix available
OSV-2025-657
  • OSS-Fuzz/curl
  • github.com/curl/curl.git
 Heap-use-after-free in ftp_pp_statemachine 20 Aug 2025
  • Fix available
CVE-2025-5399
  • github.com/curl/curl
 See record for full details 07 Jun 2025
  • Fix available
  • Severity - 7.5 (High)
CURL-CVE-2025-5399
  • github.com/curl/curl.git
 WebSocket endless loop 04 Jun 2025
  • Fix available
CURL-CVE-2025-4947
  • github.com/curl/curl.git
 QUIC certificate check skip with wolfSSL 28 May 2025
  • Fix available
CURL-CVE-2025-5025
  • github.com/curl/curl.git
 No QUIC certificate pinning with wolfSSL 28 May 2025
  • Fix available
CVE-2025-5025
  • github.com/curl/curl
 See record for full details 28 May 2025
  • Fix available
  • Severity - 4.8 (Medium)
CVE-2025-4947
  • github.com/curl/curl
 See record for full details 28 May 2025
  • Fix available
  • Severity - 6.5 (Medium)
Load more...