This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:haxx:curl:7.10.2 |
| Detail | |||
|---|---|---|---|
| Vendor | Haxx | First view | 2013-04-29 |
| Product | Curl | Last view | 2019-07-02 |
| Version | 7.10.2 | Type | Application |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/a:haxx:curl | ||
Activity : Overall
Related : CVE
| Date | Alert | Access Vector | Access Complexity | Authentication | ||
|---|---|---|---|---|---|---|
| 4.6 | 2019-07-02 | CVE-2019-5443 | Local | Low | None Requ... | |
| 5 | 2018-08-23 | CVE-2003-1605 | Network | Low | None Requ... | |
| 5 | 2018-08-01 | CVE-2016-8625 | Network | Low | None Requ... | |
| 5 | 2018-08-01 | CVE-2016-8623 | Network | Low | None Requ... | |
| 7.5 | 2018-08-01 | CVE-2016-8620 | Network | Low | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentication | ||
|---|---|---|---|---|---|---|
| 7.5 | 2018-08-01 | CVE-2016-8619 | Network | Low | None Requ... | |
| 4.3 | 2018-08-01 | CVE-2016-8616 | Network | Medium | None Requ... | |
| 5 | 2018-08-01 | CVE-2016-8615 | Network | Low | None Requ... | |
| 5 | 2018-07-31 | CVE-2016-8624 | Network | Low | None Requ... | |
| 5 | 2018-07-31 | CVE-2016-8621 | Network | Low | None Requ... | |
| 7.5 | 2018-07-31 | CVE-2016-8618 | Network | Low | None Requ... | |
| 4.4 | 2018-07-31 | CVE-2016-8617 | Local | Medium | None Requ... | |
| 4 | 2018-07-27 | CVE-2017-2629 | Network | Low | Requires ... | |
| 6.8 | 2018-04-23 | CVE-2016-9594 | Network | Medium | None Requ... | |
| 6.8 | 2018-04-23 | CVE-2016-9586 | Network | Medium | None Requ... | |
| 5 | 2018-01-24 | CVE-2018-1000007 | Network | Low | None Requ... | |
| 5 | 2017-06-14 | CVE-2017-9502 | Network | Low | None Requ... | |
| 6.9 | 2016-06-24 | CVE-2016-4802 | Local | Medium | None Requ... | |
| 5 | 2016-01-29 | CVE-2016-0755 | Network | Low | None Requ... | |
| 5 | 2016-01-29 | CVE-2016-0754 | Network | Low | None Requ... | |
| 5 | 2015-05-01 | CVE-2015-3153 | Network | Low | None Requ... | |
| 5 | 2014-11-18 | CVE-2014-3620 | Network | Low | None Requ... | |
| 5 | 2014-11-18 | CVE-2014-3613 | Network | Low | None Requ... | |
| 6.8 | 2013-07-31 | CVE-2013-2174 | Network | Medium | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 11% (3) | CWE-200 | Information Exposure |
| 11% (3) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 11% (3) | CWE-20 | Improper Input Validation |
| 7% (2) | CWE-415 | Double Free |
| 7% (2) | CWE-310 | Cryptographic Issues |
| % | id | Name |
|---|---|---|
| 7% (2) | CWE-255 | Credentials Management |
| 7% (2) | CWE-125 | Out-of-bounds Read |
| 3% (1) | CWE-787 | Out-of-bounds Write |
| 3% (1) | CWE-665 | Improper Initialization |
| 3% (1) | CWE-416 | Use After Free |
| 3% (1) | CWE-295 | Certificate Issues |
| 3% (1) | CWE-287 | Improper Authentication |
| 3% (1) | CWE-264 | Permissions, Privileges, and Access Controls |
| 3% (1) | CWE-254 | Security Features |
| 3% (1) | CWE-190 | Integer Overflow or Wraparound |
| 3% (1) | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
Oval Markup Language : Definitions
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:29165 | SUSE-SU-2015:0990-1 -- Security update for curl (moderate) |
| oval:org.mitre.oval:def:20280 | RHSA-2013:0771: curl security update (Moderate) |
| oval:org.mitre.oval:def:20032 | DSA-2660-1 curl - cookie leak vulnerability |
| oval:org.mitre.oval:def:18259 | USN-1801-1 -- curl vulnerability |
| oval:org.mitre.oval:def:23950 | ELSA-2013:0771: curl security update (Moderate) |
| id | Name |
|---|---|
| oval:org.mitre.oval:def:23498 | DEPRECATED: ELSA-2013:0771: curl security update (Moderate) |
| oval:org.mitre.oval:def:26023 | SUSE-SU-2013:0771-1 -- Security update for curl |
| oval:org.mitre.oval:def:25795 | SUSE-SU-2013:0772-1 -- Security update for compat-curl2 |
| oval:org.mitre.oval:def:25538 | SUSE-SU-2013:0773-1 -- Security update for curl, curl |
| oval:org.mitre.oval:def:27357 | DEPRECATED: ELSA-2013-0771 -- curl security update (moderate) |
| oval:org.mitre.oval:def:26869 | DSA-3022-1 curl - security update |
| oval:org.mitre.oval:def:26774 | USN-2346-1 -- curl vulnerabilities |
| oval:org.mitre.oval:def:21195 | RHSA-2013:0983: curl security update (Moderate) |
| oval:org.mitre.oval:def:18350 | USN-1894-1 -- curl vulnerability |
| oval:org.mitre.oval:def:18308 | DSA-2713-1 curl - heap overflow |
| oval:org.mitre.oval:def:23721 | ELSA-2013:0983: curl security update (Moderate) |
| oval:org.mitre.oval:def:23483 | DEPRECATED: ELSA-2013:0983: curl security update (Moderate) |
| oval:org.mitre.oval:def:25977 | SUSE-SU-2013:1166-1 -- Security update for compat-curl2 |
| oval:org.mitre.oval:def:25912 | SUSE-SU-2013:1166-2 -- Security update for curl |
| oval:org.mitre.oval:def:27292 | DEPRECATED: ELSA-2013-0983 -- curl security update (moderate) |
Information Assurance Vulnerability Management (IAVM)
| id | Description |
|---|---|
| 2015-A-0199 | Multiple Vulnerabilities in Apple Mac OS X Severity : Category I - VMSKEY : V0061337 |
Nessus® Vulnerability Scanner
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| id | Description |
|---|---|
| 2019-01-10 | Name : The remote Amazon Linux 2 host is missing a security update. File : al2_ALAS-2019-1139.nasl - Type : ACT_GATHER_INFO |
| 2019-01-08 | Name : The remote EulerOS host is missing multiple security updates. File : EulerOS_SA-2019-1002.nasl - Type : ACT_GATHER_INFO |
| 2018-12-28 | Name : The remote EulerOS host is missing multiple security updates. File : EulerOS_SA-2018-1427.nasl - Type : ACT_GATHER_INFO |
| 2018-12-10 | Name : The remote EulerOS host is missing multiple security updates. File : EulerOS_SA-2018-1401.nasl - Type : ACT_GATHER_INFO |
| 2018-11-16 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2018-3157.nasl - Type : ACT_GATHER_INFO |
| id | Description |
|---|---|
| 2018-11-07 | Name : The remote Debian host is missing a security update. File : debian_DLA-1568.nasl - Type : ACT_GATHER_INFO |
| 2018-10-26 | Name : The remote EulerOS Virtualization host is missing multiple security updates. File : EulerOS_SA-2018-1330.nasl - Type : ACT_GATHER_INFO |
| 2018-08-17 | Name : The remote PhotonOS host is missing multiple security updates. File : PhotonOS_PHSA-2018-1_0-0108.nasl - Type : ACT_GATHER_INFO |
| 2018-07-24 | Name : The remote PhotonOS host is missing multiple security updates. File : PhotonOS_PHSA-2018-2_0-0016.nasl - Type : ACT_GATHER_INFO |
| 2018-07-03 | Name : The remote EulerOS host is missing multiple security updates. File : EulerOS_SA-2018-1202.nasl - Type : ACT_GATHER_INFO |
| 2018-07-03 | Name : The remote EulerOS host is missing multiple security updates. File : EulerOS_SA-2018-1203.nasl - Type : ACT_GATHER_INFO |
| 2018-04-18 | Name : The remote Amazon Linux 2 host is missing a security update. File : al2_ALAS-2018-951.nasl - Type : ACT_GATHER_INFO |
| 2018-04-10 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201804-04.nasl - Type : ACT_GATHER_INFO |
| 2018-02-22 | Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2018-951.nasl - Type : ACT_GATHER_INFO |
| 2018-01-31 | Name : The remote Fedora host is missing a security update. File : fedora_2018-241a5a2409.nasl - Type : ACT_GATHER_INFO |
| 2018-01-31 | Name : The remote Fedora host is missing a security update. File : fedora_2018-85655b12b6.nasl - Type : ACT_GATHER_INFO |
| 2018-01-30 | Name : The remote Debian host is missing a security update. File : debian_DLA-1263.nasl - Type : ACT_GATHER_INFO |
| 2018-01-29 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-4098.nasl - Type : ACT_GATHER_INFO |
| 2018-01-29 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_0cbf0fa6dcb7469cb87af94cffd94583.nasl - Type : ACT_GATHER_INFO |
| 2018-01-25 | Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2018-024-01.nasl - Type : ACT_GATHER_INFO |
| 2017-12-28 | Name : The remote device is missing a vendor-supplied security patch. File : f5_bigip_SOL46123931.nasl - Type : ACT_GATHER_INFO |
| 2017-12-26 | Name : The remote device is missing a vendor-supplied security patch. File : f5_bigip_SOL01006862.nasl - Type : ACT_GATHER_INFO |
| 2017-12-26 | Name : The remote device is missing a vendor-supplied security patch. File : f5_bigip_SOL10196624.nasl - Type : ACT_GATHER_INFO |
| 2017-12-26 | Name : The remote device is missing a vendor-supplied security patch. File : f5_bigip_SOL26899353.nasl - Type : ACT_GATHER_INFO |
| 2017-12-26 | Name : The remote device is missing a vendor-supplied security patch. File : f5_bigip_SOL44503763.nasl - Type : ACT_GATHER_INFO |
