This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:haxx:curl:7.28.1
Detail
VendorHaxxFirst view 2013-03-08
ProductCurlLast view2019-09-16
Version7.28.1TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:haxx:curl

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
7.52019-09-16CVE-2019-5482NetworkLowNone Requ...
4.62019-07-02CVE-2019-5443LocalLowNone Requ...
6.42018-10-31CVE-2018-16842NetworkLowNone Requ...
52018-08-01CVE-2016-8625NetworkLowNone Requ...
52018-08-01CVE-2016-8623NetworkLowNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
7.52018-08-01CVE-2016-8620NetworkLowNone Requ...
7.52018-08-01CVE-2016-8619NetworkLowNone Requ...
4.32018-08-01CVE-2016-8616NetworkMediumNone Requ...
52018-08-01CVE-2016-8615NetworkLowNone Requ...
52018-07-31CVE-2016-8624NetworkLowNone Requ...
52018-07-31CVE-2016-8621NetworkLowNone Requ...
7.52018-07-31CVE-2016-8618NetworkLowNone Requ...
4.42018-07-31CVE-2016-8617LocalMediumNone Requ...
42018-07-27CVE-2017-2629NetworkLowRequires ...
6.42018-05-24CVE-2018-1000301NetworkLowNone Requ...
6.82018-04-23CVE-2016-9594NetworkMediumNone Requ...
6.82018-04-23CVE-2016-9586NetworkMediumNone Requ...
6.42018-03-14CVE-2018-1000122NetworkLowNone Requ...
52018-03-14CVE-2018-1000121NetworkLowNone Requ...
7.52018-03-14CVE-2018-1000120NetworkLowNone Requ...
52018-01-24CVE-2018-1000007NetworkLowNone Requ...
7.52017-11-29CVE-2017-8817NetworkLowNone Requ...
52017-06-14CVE-2017-9502NetworkLowNone Requ...
6.92016-06-24CVE-2016-4802LocalMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
14% (6)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
12% (5)CWE-20Improper Input Validation
9% (4)CWE-310Cryptographic Issues
9% (4)CWE-125Out-of-bounds Read
7% (3)CWE-287Improper Authentication
Hide | Show 14 More...
%idName
7% (3)CWE-200Information Exposure
4% (2)CWE-787Out-of-bounds Write
4% (2)CWE-415Double Free
4% (2)CWE-264Permissions, Privileges, and Access Controls
2% (1)CWE-665Improper Initialization
2% (1)CWE-476NULL Pointer Dereference
2% (1)CWE-416Use After Free
2% (1)CWE-295Certificate Issues
2% (1)CWE-284Access Control (Authorization) Issues
2% (1)CWE-255Credentials Management
2% (1)CWE-254Security Features
2% (1)CWE-190Integer Overflow or Wraparound
2% (1)CWE-120Buffer Copy without Checking Size of Input ('Classic Buffer Overflo...
2% (1)CWE-94Failure to Control Generation of Code ('Code Injection')

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:29165SUSE-SU-2015:0990-1 -- Security update for curl (moderate)
oval:org.mitre.oval:def:18190USN-1721-1 -- curl vulnerability
oval:org.mitre.oval:def:20280RHSA-2013:0771: curl security update (Moderate)
oval:org.mitre.oval:def:20032DSA-2660-1 curl - cookie leak vulnerability
oval:org.mitre.oval:def:18259USN-1801-1 -- curl vulnerability
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:23950ELSA-2013:0771: curl security update (Moderate)
oval:org.mitre.oval:def:23498DEPRECATED: ELSA-2013:0771: curl security update (Moderate)
oval:org.mitre.oval:def:26023SUSE-SU-2013:0771-1 -- Security update for curl
oval:org.mitre.oval:def:25795SUSE-SU-2013:0772-1 -- Security update for compat-curl2
oval:org.mitre.oval:def:25538SUSE-SU-2013:0773-1 -- Security update for curl, curl
oval:org.mitre.oval:def:27357DEPRECATED: ELSA-2013-0771 -- curl security update (moderate)
oval:org.mitre.oval:def:24695DSA-2902-1 curl - security update
oval:org.mitre.oval:def:24626USN-2167-1 -- curl vulnerabilities
oval:org.mitre.oval:def:25299SUSE-OU-2014:0571-1 -- Optional OpenSSL 1.0 versions of cyrus-sasl, libcurl4 ...
oval:org.mitre.oval:def:24940SUSE-SU-2014:0691-1 -- Security update for curl
oval:org.mitre.oval:def:22425DSA-2849-1 curl - information disclosure
oval:org.mitre.oval:def:22209USN-2097-1 -- curl vulnerability
oval:org.mitre.oval:def:25393SUSE-SU-2014:0175-2 -- Security update for curl
oval:org.mitre.oval:def:25377SUSE-SU-2014:0175-1 -- Security update for curl
oval:org.mitre.oval:def:25350SUSE-SU-2014:0171-1 -- Security update for curl
oval:org.mitre.oval:def:26869DSA-3022-1 curl - security update
oval:org.mitre.oval:def:26774USN-2346-1 -- curl vulnerabilities
oval:org.mitre.oval:def:21195RHSA-2013:0983: curl security update (Moderate)
oval:org.mitre.oval:def:18350USN-1894-1 -- curl vulnerability
oval:org.mitre.oval:def:18308DSA-2713-1 curl - heap overflow

ExploitDB Exploits

idDescription
24487cURL Buffer Overflow Vulnerability

Information Assurance Vulnerability Management (IAVM)

idDescription
2015-A-0199Multiple Vulnerabilities in Apple Mac OS X
Severity : Category I - VMSKEY : V0061337
2014-B-0161Multiple Vulnerabilities in VMware ESXi 5.1
Severity : Category I - VMSKEY : V0057717

Snort® IPS/IDS

DateDescription
2014-01-10libcurl MD5 digest buffer overflow attempt
RuleID : 26391 - Type : PROTOCOL-POP - Revision : 3

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2019-01-10Name : The remote Amazon Linux 2 host is missing a security update.
File : al2_ALAS-2019-1139.nasl - Type : ACT_GATHER_INFO
2019-01-08Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2019-1002.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-fa01002d7e.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-fdc4ca8675.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-bc65ab5014.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-69bac0f51c.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-7785911c9e.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-298a3d2923.nasl - Type : ACT_GATHER_INFO
2018-12-28Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1427.nasl - Type : ACT_GATHER_INFO
2018-12-10Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1401.nasl - Type : ACT_GATHER_INFO
2018-11-16Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2018-3157.nasl - Type : ACT_GATHER_INFO
2018-11-07Name : The remote Debian host is missing a security update.
File : debian_DLA-1568.nasl - Type : ACT_GATHER_INFO
2018-11-05Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4331.nasl - Type : ACT_GATHER_INFO
2018-11-02Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_e0ab177307c146c691704c5e81c00927.nasl - Type : ACT_GATHER_INFO
2018-11-01Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2018-304-01.nasl - Type : ACT_GATHER_INFO
2018-10-26Name : The remote EulerOS Virtualization host is missing multiple security updates.
File : EulerOS_SA-2018-1330.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2018-1_0-0108.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2018-1_0-0124.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2018-1_0-0158.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2018-2_0-0068.nasl - Type : ACT_GATHER_INFO
2018-07-24Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2018-2_0-0016.nasl - Type : ACT_GATHER_INFO
2018-07-03Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1202.nasl - Type : ACT_GATHER_INFO
2018-07-03Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1203.nasl - Type : ACT_GATHER_INFO
2018-06-20Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201806-05.nasl - Type : ACT_GATHER_INFO
2018-06-12Name : The remote Amazon Linux 2 host is missing a security update.
File : al2_ALAS-2018-1029.nasl - Type : ACT_GATHER_INFO