Known Vulnerabilities for Libcurl by Haxx
Listed below are 10 of the newest known vulnerabilities associated with "Libcurl" by "Haxx".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-22945 | When sending data to an MQTT server, libcurl <= 7.73.0 and 7.78.0 could in some circumstances erroneously keep a pointer to a... | 9.1 - CRITICAL | 2021-09-23 | 2024-03-27 |
| CVE-2021-22924 | libcurl keeps previously used connections in a connection pool for subsequenttransfers to reuse, if one of them matches the s... | 3.7 - LOW | 2021-08-05 | 2024-03-27 |
| CVE-2021-22890 | curl 7.63.0 to and including 7.75.0 includes vulnerability that allows a malicious HTTPS proxy to MITM a connection due to ba... | 3.7 - LOW | 2021-04-01 | 2024-03-27 |
| CVE-2021-22876 | curl 7.1.1 to and including 7.75.0 is vulnerable to an "Exposure of Private Personal Information to an Unauthorized Actor" by... | 5.3 - MEDIUM | 2021-04-01 | 2024-03-27 |
| CVE-2020-8286 | curl 7.41.0 through 7.73.0 is vulnerable to an improper check for certificate revocation due to insufficient verification of ... | 7.5 - HIGH | 2020-12-14 | 2024-03-27 |
| CVE-2020-8285 | curl 7.21.0 to and including 7.73.0 is vulnerable to uncontrolled recursion due to a stack overflow issue in FTP wildcard mat... | 7.5 - HIGH | 2020-12-14 | 2024-03-27 |
| CVE-2020-8231 | Due to use of a dangling pointer, libcurl 7.29.0 through 7.71.1 can use the wrong connection when sending data. | 7.5 - HIGH | 2020-12-14 | 2024-03-27 |
| CVE-2019-5436 | A heap buffer overflow in the TFTP receiving code allows for DoS or arbitrary code execution in libcurl versions 7.19.4 throu... | 7.8 - HIGH | 2019-05-28 | 2023-11-07 |
| CVE-2019-3823 | libcurl versions from 7.34.0 to before 7.64.0 are vulnerable to a heap out-of-bounds read in the code handling the end-of-res... | 7.5 - HIGH | 2019-02-06 | 2023-11-07 |
| CVE-2019-3822 | libcurl versions from 7.36.0 to before 7.64.0 are vulnerable to a stack-based buffer overflow. The function creating an outgo... | 9.8 - CRITICAL | 2019-02-06 | 2023-11-07 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Haxx | Libcurl | 7.9.8 | All | All | All |
| Application | Haxx | Libcurl | 7.9.7 | All | All | All |
| Application | Haxx | Libcurl | 7.9.6 | All | All | All |
| Application | Haxx | Libcurl | 7.9.5 | All | All | All |
| Application | Haxx | Libcurl | 7.9.4 | All | All | All |
| Application | Haxx | Libcurl | 7.9.3 | All | All | All |
| Application | Haxx | Libcurl | 7.9.2 | All | All | All |
| Application | Haxx | Libcurl | 7.9.1 | All | All | All |
| Application | Haxx | Libcurl | 7.9 | All | All | All |
| Application | Haxx | Libcurl | 7.8.1 | All | All | All |
| Application | Haxx | Libcurl | 7.8 | All | All | All |
| Application | Haxx | Libcurl | 7.74.0 | All | All | All |
| Application | Haxx | Libcurl | 7.73.0 | All | All | All |
| Application | Haxx | Libcurl | 7.72.0 | All | All | All |
| Application | Haxx | Libcurl | 7.71.1 | All | All | All |
| Application | Haxx | Libcurl | 7.71.0 | All | All | All |
| Application | Haxx | Libcurl | 7.70.0 | All | All | All |
| Application | Haxx | Libcurl | 7.7.3 | All | All | All |
| Application | Haxx | Libcurl | 7.7.2 | All | All | All |
| Application | Haxx | Libcurl | 7.7.1 | All | All | All |