Haxx Schwachstellen

Zeitverlauf

Typ

Network Utility Software	12

Produkt

haxx.se cURL	12
haxx.se libcURL	4

Massnahmen

Official Fix	10
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	2

Ausnutzbarkeit

High	0
Functional	0
Proof-of-Concept	2
Unproven	4
Not Defined	6

Zugriffsart

Not Defined	0
Physical	0
Local	0
Adjacent	2
Network	10

Authentisierung

Not Defined	0
High	0
Low	0
None	12

Benutzeraktivität

Not Defined	0
Required	4
None	8

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	6
≤7	6
≤8	0
≤9	0
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	0
≤5	2
≤6	10
≤7	0
≤8	0
≤9	0
≤10	0

VulDB

≤1	0
≤2	0
≤3	0
≤4	0
≤5	2
≤6	4
≤7	6
≤8	0
≤9	0
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	2
≤7	0
≤8	2
≤9	0
≤10	0

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Hersteller

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	0
<2k	6
<5k	6
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploit heute

<1k	10
<2k	2
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploitmarktvolumen

🔴 CTI Aktivitäten

Affected Products (2): cURL (11), libcURL (4)

Veröffentlicht	Base	Temp	Schwachstelle	Prod	Aus	Mas	EPSS	CTI	CVE
15.12.2020	5.9	5.9	haxx.se cURL FTP Wildcard Pufferüberlauf	Network Utility Software	Not Defined	Not Defined	0.00710	0.00	CVE-2020-8285
18.05.2016	5.3	5.2	haxx.se cURL mbedTLS/PolarSSL mbedtls.c sslsethostname erweiterte Rechte	Network Utility Software	Not Defined	Official Fix	0.00754	0.00	CVE-2016-3739
26.03.2014	6.5	5.7	haxx.se cURL/libcURL Session schwache Authentisierung	Network Utility Software	Unproven	Official Fix	0.00621	0.00	CVE-2014-0138
26.03.2014	5.3	4.6	haxx.se cURL/libcURL SSL Certificate hostmatch schwache Verschlüsselung	Network Utility Software	Unproven	Official Fix	0.00193	0.00	CVE-2014-0139
17.03.2014	5.3	4.4	haxx.se cURL/libcURL Schannel SSL Backend erweiterte Rechte	Network Utility Software	Unproven	Official Fix	0.00295	0.00	CVE-2014-2522
07.01.2014	6.5	5.9	haxx.se cURL HTTP NTLM Connection schwache Authentisierung	Network Utility Software	Proof-of-Concept	Official Fix	0.00752	0.00	CVE-2014-0015
19.12.2013	6.5	6.2	haxx.se cURL CN/SAN Name Field erweiterte Rechte	Network Utility Software	Proof-of-Concept	Not Defined	0.00245	0.00	CVE-2013-6422
22.06.2013	6.3	6.0	haxx.se cURL escape.c curl_easy_unescape Pufferüberlauf	Network Utility Software	Not Defined	Official Fix	0.09274	0.00	CVE-2013-2174
12.04.2013	5.3	5.1	haxx.se cURL/libcURL Domain Matching cookie.c tailmatch Information Disclosure	Network Utility Software	Not Defined	Official Fix	0.00758	0.00	CVE-2013-1944
06.02.2013	10.0	9.0	haxx.se cURL curl_sasl.c Curl_sasl_create_digest_md5_message Pufferüberlauf	Network Utility Software	Proof-of-Concept	Official Fix	0.92318	0.00	CVE-2013-0249

1 weitere Einträge werden nicht mehr angezeigt

🔒 Login Required

You need to signup and login to see more of the remaining 1 results.

◂ ZurückÜbersichtWeiter ▸

Do you know our Splunk app?

Download it now for free!