Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2025-9086 |
|
Out-of-Bounds Read in haxx (CVE-2025-9086)
vulnerability in haxx (CVE-2025-9086). Risk of unauthorized operations or information disclosure. Exploitable via ``secure``.
|
| CVE-2023-46219 |
|
Vulnerability in haxx (CVE-2023-46219)
vulnerability in haxx (CVE-2023-46219). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-46218 |
|
Vulnerability in haxx (CVE-2023-46218)
vulnerability in haxx (CVE-2023-46218). Risk of unauthorized operations or information disclosure. Exploitable via ``curl.co.uk``.
|
| CVE-2023-38545 |
|
Out-of-Bounds Write in haxx (CVE-2023-38545)
out-of-bounds write in haxx (CVE-2023-38545). Successful exploitation can lead to full system takeover.
|
| CVE-2022-27781 |
|
Vulnerability in haxx (CVE-2022-27781)
vulnerability in haxx (CVE-2022-27781). Risk of unauthorized operations or information disclosure. Exploitable via ``CURLOPT_CERTINFO``.
|
| CVE-2022-27782 |
|
Vulnerability in haxx (CVE-2022-27782)
vulnerability in haxx (CVE-2022-27782). Data can be tampered with by attackers.
|
| CVE-2022-27774 |
|
Vulnerability in haxx (CVE-2022-27774)
vulnerability in haxx (CVE-2022-27774). Confidential information can be exposed externally.
|
| CVE-2022-27775 |
|
Information Disclosure in haxx (CVE-2022-27775)
vulnerability in haxx (CVE-2022-27775). Confidential information can be exposed externally.
|
| CVE-2022-22576 |
|
Authentication Bypass in haxx (CVE-2022-22576)
authentication bypass in haxx (CVE-2022-22576). Confidential information can be exposed externally.
|
| CVE-2017-8816 |
|
Vulnerability in dos (CVE-2017-8816)
vulnerability in dos (CVE-2017-8816). Successful exploitation can lead to full system takeover. Exploitable via ``Curl_ntlm_core_mk_ntlmv2_hash``.
|
| CVE-2017-8817 |
|
Out-of-Bounds Read in dos (CVE-2017-8817)
vulnerability in dos (CVE-2017-8817). Successful exploitation can lead to full system takeover. Exploitable via ``CURLOPT_WILDCARDMATCH``.
|
| CVE-2017-1000257 |
|
Buffer Overflow in haxx (CVE-2017-1000257)
vulnerability in haxx (CVE-2017-1000257). Confidential information can be exposed externally.
|