Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
CURL-CVE-2025-10966
  • github.com/curl/curl.git
 missing SFTP host verification with wolfSSH 05 Nov
  • Fix available
CURL-CVE-2025-10148
  • github.com/curl/curl.git
 predictable WebSocket mask 10 Sep
  • Fix available
CURL-CVE-2025-9086
  • github.com/curl/curl.git
 Out of bounds read for cookie path 10 Sep
  • Fix available
OSV-2025-657
  • OSS-Fuzz/curl
  • github.com/curl/curl.git
 Heap-use-after-free in ftp_pp_statemachine 20 Aug
  • Fix available
CVE-2025-5399
  • github.com/curl/curl
 See record for full details 07 Jun
  • Fix available
  • Severity - 7.5 (High)
CURL-CVE-2025-5399
  • github.com/curl/curl.git
 WebSocket endless loop 04 Jun
  • Fix available
CURL-CVE-2025-4947
  • github.com/curl/curl.git
 QUIC certificate check skip with wolfSSL 28 May
  • Fix available
CURL-CVE-2025-5025
  • github.com/curl/curl.git
 No QUIC certificate pinning with wolfSSL 28 May
  • Fix available
CVE-2025-5025
  • github.com/curl/curl
 See record for full details 28 May
  • Fix available
  • Severity - 4.8 (Medium)
CVE-2025-4947
  • github.com/curl/curl
 See record for full details 28 May
  • Fix available
  • Severity - 6.5 (Medium)
CVE-2025-0725
  • github.com/curl/curl
 See record for full details 05 Feb
  • Fix available
  • Severity - 7.3 (High)
CVE-2025-0665
  • github.com/curl/curl
 See record for full details 05 Feb
  • No fix available
  • Severity - 9.8 (Critical)
CVE-2025-0167
  • github.com/curl/curl
 See record for full details 05 Feb
  • Fix available
  • Severity - 3.4 (Low)
CURL-CVE-2025-0167
  • github.com/curl/curl.git
 netrc and default credential leak 05 Feb
  • Fix available
CURL-CVE-2025-0665
  • github.com/curl/curl.git
 eventfd double close 05 Feb
  • Fix available
CURL-CVE-2025-0725
  • github.com/curl/curl.git
 gzip integer overflow 05 Feb
  • Fix available
Load more...