Vulnerabilities > Haxx
|2023-09-15||CVE-2023-38039|| Allocation of Resources Without Limits or Throttling vulnerability in multiple products |
When curl retrieves an HTTP response, it stores the incoming headers so that they can be accessed later via the libcurl headers API. However, curl did not have a limit in how many or how large headers it would accept in a response, allowing a malicious server to stream an endless series of headers and eventually cause curl to run out of heap memory.
| 7.5 |
|2023-08-22||CVE-2020-19909|| Integer Overflow or Wraparound vulnerability in Haxx Curl 7.65.2 |
** DISPUTED ** Integer overflow vulnerability in tool_operate.c in curl 7.65.2 via a large value as the retry delay.
| 3.3 |
|2023-07-26||CVE-2023-32001|| Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products |
libcurl can be told to save cookie, HSTS and/or alt-svc data to files.
| 5.0 |
|2023-05-26||CVE-2023-28319|| Use After Free vulnerability in multiple products |
A use after free vulnerability exists in curl <v8.1.0 in the way libcurl offers a feature to verify an SSH server's public key using a SHA 256 hash.
| 7.5 |
|2023-05-26||CVE-2023-28320|| Resource Exhaustion vulnerability in multiple products |
A denial of service vulnerability exists in curl <v8.1.0 in the way libcurl provides several different backends for resolving host names, selected at build time.
| 5.9 |
|2023-05-26||CVE-2023-28321|| Improper Certificate Validation vulnerability in multiple products |
An improper certificate validation vulnerability exists in curl <v8.1.0 in the way it supports matching of wildcard patterns when listed as "Subject Alternative Name" in TLS server certificates.
| 5.9 |
|2023-05-26||CVE-2023-28322||An information disclosure vulnerability exists in curl <v8.1.0 when doing HTTP(S) transfers, libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even when the `CURLOPT_POSTFIELDS` option has been set, if the same handle previously wasused to issue a `PUT` request which used that callback.|| 3.7 |
|2023-03-30||CVE-2023-27533|| Injection vulnerability in Haxx Curl |
A vulnerability in input validation exists in curl <8.0 during communication using the TELNET protocol may allow an attacker to pass on maliciously crafted user name and "telnet options" during server negotiation.
| 8.8 |
|2023-03-30||CVE-2023-27534|| Path Traversal vulnerability in Haxx Curl |
A path traversal vulnerability exists in curl <8.0.0 SFTP implementation causes the tilde (~) character to be wrongly replaced when used as a prefix in the first path element, in addition to its intended use as the first element to indicate a path relative to the user's home directory.
| 8.8 |
|2023-03-30||CVE-2023-27535|| Improper Authentication vulnerability in multiple products |
An authentication bypass vulnerability exists in libcurl <8.0.0 in the FTP connection reuse feature that can result in wrong credentials being used during subsequent transfers.
| 5.9 |