Known Vulnerabilities for products from Haxx
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Haxx".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-46218 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.5 - MEDIUM | 2023-12-07 | 2024-01-25 |
| CVE-2023-42915 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.8 - HIGH | 2024-01-23 | 2024-01-29 |
| CVE-2023-38546 json | This flaw allows an attacker to insert cookies at will into a running program using libcurl, if the specific series of condit... | 3.7 - LOW | 2023-10-18 | 2024-01-26 |
| CVE-2023-38545 json | This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host n... | 9.8 - CRITICAL | 2023-10-18 | 2024-04-01 |
| CVE-2023-38039 json | When curl retrieves an HTTP response, it stores the incoming headers so that they can be accessed later via the libcurl heade... | 7.5 - HIGH | 2023-09-15 | 2024-04-01 |
| CVE-2023-32001 json | ** REJECT ** We issued this CVE pre-maturely, as we have subsequently realized that this issue points out a problem that ther... | Not Provided | 2023-07-26 | 2023-11-07 |
| CVE-2023-28322 json | An information disclosure vulnerability exists in curl | 3.7 - LOW
|
2023-05-26
|
2023-12-22
|
|
| CVE-2023-28321 json | An improper certificate validation vulnerability exists in curl | 5.9 - MEDIUM
|
2023-05-26
|
2023-11-07
|
|
| CVE-2023-28320 json | A denial of service vulnerability exists in curl | 5.9 - MEDIUM
|
2023-05-26
|
2023-10-20
|
|
| CVE-2023-28319 json | A use after free vulnerability exists in curl | 7.5 - HIGH
|
2023-05-26
|
2023-10-20
|
|
| CVE-2023-27538 json | An authentication bypass vulnerability exists in libcurl prior to v8.0.0 where it reuses a previously established SSH connect... | 5.5 - MEDIUM | 2023-03-30 | 2024-03-27 |
| CVE-2023-27537 json | A double free vulnerability exists in libcurl <8.0.0 when sharing HSTS data between separate "handles". This sharing was intr... | 5.9 - MEDIUM | 2023-03-30 | 2024-03-27 |
| CVE-2023-27536 json | An authentication bypass vulnerability exists libcurl <8.0.0 in the connection reuse feature which can reuse previously estab... | 5.9 - MEDIUM | 2023-03-30 | 2024-03-27 |
| CVE-2023-27535 json | An authentication bypass vulnerability exists in libcurl <8.0.0 in the FTP connection reuse feature that can result in wrong ... | 5.9 - MEDIUM | 2023-03-30 | 2024-03-27 |
| CVE-2023-27534 json | A path traversal vulnerability exists in curl <8.0.0 SFTP implementation causes the tilde (~) character to be wrongly replace... | 8.8 - HIGH | 2023-03-30 | 2024-03-27 |
| CVE-2023-27533 json | A vulnerability in input validation exists in curl <8.0 during communication using the TELNET protocol may allow an attacker ... | 8.8 - HIGH | 2023-03-30 | 2024-03-27 |
| CVE-2023-23916 json | An allocation of resources without limits or throttling vulnerability exists in curl | 6.5 - MEDIUM
|
2023-02-23
|
2024-03-27
|
|
| CVE-2023-23915 json | A cleartext transmission of sensitive information vulnerability exists in curl | 6.5 - MEDIUM
|
2023-02-23
|
2024-03-27
|
|
| CVE-2023-23914 json | A cleartext transmission of sensitive information vulnerability exists in curl | 9.1 - CRITICAL
|
2023-02-23
|
2024-03-27
|
|
| CVE-2022-43552 json | A use after free vulnerability exists in curl <7.87.0. Curl can be asked to *tunnel* virtually all protocols it supports thro... | 5.9 - MEDIUM | 2023-02-09 | 2024-03-27 |