This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:haxx:curl:7.21.4 |
| Detail | |||
|---|---|---|---|
| Vendor | Haxx | First view | 2013-04-29 |
| Product | Curl | Last view | 2019-09-16 |
| Version | 7.21.4 | Type | Application |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/a:haxx:curl | ||
Activity : Overall
Related : CVE
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| Date | Alert | Access Vector | Access Complexity | Authentication | ||
|---|---|---|---|---|---|---|
| 7.5 | 2019-09-16 | CVE-2019-5482 | Network | Low | None Requ... | |
| 4.6 | 2019-07-02 | CVE-2019-5443 | Local | Low | None Requ... | |
| 6.4 | 2018-10-31 | CVE-2018-16842 | Network | Low | None Requ... | |
| 5 | 2018-08-01 | CVE-2016-8625 | Network | Low | None Requ... | |
| 5 | 2018-08-01 | CVE-2016-8623 | Network | Low | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentication | ||
|---|---|---|---|---|---|---|
| 7.5 | 2018-08-01 | CVE-2016-8620 | Network | Low | None Requ... | |
| 7.5 | 2018-08-01 | CVE-2016-8619 | Network | Low | None Requ... | |
| 4.3 | 2018-08-01 | CVE-2016-8616 | Network | Medium | None Requ... | |
| 5 | 2018-08-01 | CVE-2016-8615 | Network | Low | None Requ... | |
| 5 | 2018-07-31 | CVE-2016-8624 | Network | Low | None Requ... | |
| 5 | 2018-07-31 | CVE-2016-8621 | Network | Low | None Requ... | |
| 7.5 | 2018-07-31 | CVE-2016-8618 | Network | Low | None Requ... | |
| 4.4 | 2018-07-31 | CVE-2016-8617 | Local | Medium | None Requ... | |
| 4 | 2018-07-27 | CVE-2017-2629 | Network | Low | Requires ... | |
| 6.4 | 2018-05-24 | CVE-2018-1000301 | Network | Low | None Requ... | |
| 6.8 | 2018-04-23 | CVE-2016-9594 | Network | Medium | None Requ... | |
| 6.8 | 2018-04-23 | CVE-2016-9586 | Network | Medium | None Requ... | |
| 6.4 | 2018-03-14 | CVE-2018-1000122 | Network | Low | None Requ... | |
| 5 | 2018-03-14 | CVE-2018-1000121 | Network | Low | None Requ... | |
| 7.5 | 2018-03-14 | CVE-2018-1000120 | Network | Low | None Requ... | |
| 5 | 2018-01-24 | CVE-2018-1000007 | Network | Low | None Requ... | |
| 7.5 | 2017-11-29 | CVE-2017-8817 | Network | Low | None Requ... | |
| 5 | 2017-06-14 | CVE-2017-9502 | Network | Low | None Requ... | |
| 6.9 | 2016-06-24 | CVE-2016-4802 | Local | Medium | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 15% (6) | CWE-125 | Out-of-bounds Read |
| 10% (4) | CWE-310 | Cryptographic Issues |
| 10% (4) | CWE-20 | Improper Input Validation |
| 7% (3) | CWE-287 | Improper Authentication |
| 7% (3) | CWE-200 | Information Exposure |
| % | id | Name |
|---|---|---|
| 7% (3) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 5% (2) | CWE-787 | Out-of-bounds Write |
| 5% (2) | CWE-415 | Double Free |
| 5% (2) | CWE-264 | Permissions, Privileges, and Access Controls |
| 2% (1) | CWE-665 | Improper Initialization |
| 2% (1) | CWE-476 | NULL Pointer Dereference |
| 2% (1) | CWE-416 | Use After Free |
| 2% (1) | CWE-295 | Certificate Issues |
| 2% (1) | CWE-284 | Access Control (Authorization) Issues |
| 2% (1) | CWE-255 | Credentials Management |
| 2% (1) | CWE-254 | Security Features |
| 2% (1) | CWE-190 | Integer Overflow or Wraparound |
| 2% (1) | CWE-120 | Buffer Copy without Checking Size of Input ('Classic Buffer Overflo... |
| 2% (1) | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
Oval Markup Language : Definitions
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:29165 | SUSE-SU-2015:0990-1 -- Security update for curl (moderate) |
| oval:org.mitre.oval:def:20280 | RHSA-2013:0771: curl security update (Moderate) |
| oval:org.mitre.oval:def:20032 | DSA-2660-1 curl - cookie leak vulnerability |
| oval:org.mitre.oval:def:18259 | USN-1801-1 -- curl vulnerability |
| oval:org.mitre.oval:def:23950 | ELSA-2013:0771: curl security update (Moderate) |
| id | Name |
|---|---|
| oval:org.mitre.oval:def:23498 | DEPRECATED: ELSA-2013:0771: curl security update (Moderate) |
| oval:org.mitre.oval:def:26023 | SUSE-SU-2013:0771-1 -- Security update for curl |
| oval:org.mitre.oval:def:25795 | SUSE-SU-2013:0772-1 -- Security update for compat-curl2 |
| oval:org.mitre.oval:def:25538 | SUSE-SU-2013:0773-1 -- Security update for curl, curl |
| oval:org.mitre.oval:def:27357 | DEPRECATED: ELSA-2013-0771 -- curl security update (moderate) |
| oval:org.mitre.oval:def:24695 | DSA-2902-1 curl - security update |
| oval:org.mitre.oval:def:24626 | USN-2167-1 -- curl vulnerabilities |
| oval:org.mitre.oval:def:25299 | SUSE-OU-2014:0571-1 -- Optional OpenSSL 1.0 versions of cyrus-sasl, libcurl4 ... |
| oval:org.mitre.oval:def:24940 | SUSE-SU-2014:0691-1 -- Security update for curl |
| oval:org.mitre.oval:def:22425 | DSA-2849-1 curl - information disclosure |
| oval:org.mitre.oval:def:22209 | USN-2097-1 -- curl vulnerability |
| oval:org.mitre.oval:def:25393 | SUSE-SU-2014:0175-2 -- Security update for curl |
| oval:org.mitre.oval:def:25377 | SUSE-SU-2014:0175-1 -- Security update for curl |
| oval:org.mitre.oval:def:25350 | SUSE-SU-2014:0171-1 -- Security update for curl |
| oval:org.mitre.oval:def:26869 | DSA-3022-1 curl - security update |
| oval:org.mitre.oval:def:26774 | USN-2346-1 -- curl vulnerabilities |
| oval:org.mitre.oval:def:21195 | RHSA-2013:0983: curl security update (Moderate) |
| oval:org.mitre.oval:def:18350 | USN-1894-1 -- curl vulnerability |
| oval:org.mitre.oval:def:18308 | DSA-2713-1 curl - heap overflow |
| oval:org.mitre.oval:def:23721 | ELSA-2013:0983: curl security update (Moderate) |
Information Assurance Vulnerability Management (IAVM)
| id | Description |
|---|---|
| 2015-A-0199 | Multiple Vulnerabilities in Apple Mac OS X Severity : Category I - VMSKEY : V0061337 |
| 2014-B-0161 | Multiple Vulnerabilities in VMware ESXi 5.1 Severity : Category I - VMSKEY : V0057717 |
Nessus® Vulnerability Scanner
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| id | Description |
|---|---|
| 2019-01-10 | Name : The remote Amazon Linux 2 host is missing a security update. File : al2_ALAS-2019-1139.nasl - Type : ACT_GATHER_INFO |
| 2019-01-08 | Name : The remote EulerOS host is missing multiple security updates. File : EulerOS_SA-2019-1002.nasl - Type : ACT_GATHER_INFO |
| 2019-01-03 | Name : The remote Fedora host is missing a security update. File : fedora_2018-fa01002d7e.nasl - Type : ACT_GATHER_INFO |
| 2019-01-03 | Name : The remote Fedora host is missing a security update. File : fedora_2018-fdc4ca8675.nasl - Type : ACT_GATHER_INFO |
| 2019-01-03 | Name : The remote Fedora host is missing a security update. File : fedora_2018-bc65ab5014.nasl - Type : ACT_GATHER_INFO |
| id | Description |
|---|---|
| 2019-01-03 | Name : The remote Fedora host is missing a security update. File : fedora_2018-69bac0f51c.nasl - Type : ACT_GATHER_INFO |
| 2019-01-03 | Name : The remote Fedora host is missing a security update. File : fedora_2018-7785911c9e.nasl - Type : ACT_GATHER_INFO |
| 2019-01-03 | Name : The remote Fedora host is missing a security update. File : fedora_2018-298a3d2923.nasl - Type : ACT_GATHER_INFO |
| 2018-12-28 | Name : The remote EulerOS host is missing multiple security updates. File : EulerOS_SA-2018-1427.nasl - Type : ACT_GATHER_INFO |
| 2018-12-10 | Name : The remote EulerOS host is missing multiple security updates. File : EulerOS_SA-2018-1401.nasl - Type : ACT_GATHER_INFO |
| 2018-11-16 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2018-3157.nasl - Type : ACT_GATHER_INFO |
| 2018-11-07 | Name : The remote Debian host is missing a security update. File : debian_DLA-1568.nasl - Type : ACT_GATHER_INFO |
| 2018-11-05 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-4331.nasl - Type : ACT_GATHER_INFO |
| 2018-11-02 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_e0ab177307c146c691704c5e81c00927.nasl - Type : ACT_GATHER_INFO |
| 2018-11-01 | Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2018-304-01.nasl - Type : ACT_GATHER_INFO |
| 2018-10-26 | Name : The remote EulerOS Virtualization host is missing multiple security updates. File : EulerOS_SA-2018-1330.nasl - Type : ACT_GATHER_INFO |
| 2018-08-17 | Name : The remote PhotonOS host is missing multiple security updates. File : PhotonOS_PHSA-2018-1_0-0108.nasl - Type : ACT_GATHER_INFO |
| 2018-08-17 | Name : The remote PhotonOS host is missing multiple security updates. File : PhotonOS_PHSA-2018-1_0-0124.nasl - Type : ACT_GATHER_INFO |
| 2018-08-17 | Name : The remote PhotonOS host is missing multiple security updates. File : PhotonOS_PHSA-2018-1_0-0158.nasl - Type : ACT_GATHER_INFO |
| 2018-08-17 | Name : The remote PhotonOS host is missing multiple security updates. File : PhotonOS_PHSA-2018-2_0-0068.nasl - Type : ACT_GATHER_INFO |
| 2018-07-24 | Name : The remote PhotonOS host is missing multiple security updates. File : PhotonOS_PHSA-2018-2_0-0016.nasl - Type : ACT_GATHER_INFO |
| 2018-07-03 | Name : The remote EulerOS host is missing multiple security updates. File : EulerOS_SA-2018-1202.nasl - Type : ACT_GATHER_INFO |
| 2018-07-03 | Name : The remote EulerOS host is missing multiple security updates. File : EulerOS_SA-2018-1203.nasl - Type : ACT_GATHER_INFO |
| 2018-06-20 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201806-05.nasl - Type : ACT_GATHER_INFO |
| 2018-06-12 | Name : The remote Amazon Linux 2 host is missing a security update. File : al2_ALAS-2018-1029.nasl - Type : ACT_GATHER_INFO |
