For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s)
listed in the References section

osv 18

fedora 3

nessus 48

redos 2

veracode 2

alpinelinux 2

ubuntucve 2

vulnrichment 2

cvelist 2

redhat 35

ibm 9

nvd 2

github 1

debiancve 2

openvas 31

cve 2

redhatcve 2

wolfi 2

hackerone 2

cbl_mariner 2

cgr 1

f5 1

ubuntu 3

oraclelinux 2

almalinux 2

amazon 1

cloudfoundry 1

photon 3

aix 1

mageia 1

slackware 1

ics 1

apple 3

hp 1

osv

CGA-4r3v-pc9w-xg64

2024-07-19 11:04:48

CGA-rcw4-3w7j-xf23

2024-07-22 12:19:47

CGA-jmhf-j53w-3629

2024-07-29 13:34:53

fedora

[SECURITY] Fedora 40 Update: kubernetes-1.29.7-1.fc40

2024-07-26 01:22:29

[SECURITY] Fedora 40 Update: curl-8.6.0-8.fc40

2024-04-19 21:41:45

[SECURITY] Fedora 39 Update: curl-8.2.1-5.fc39

2024-04-25 01:20:28

nessus

Fedora 40 : kubernetes (2024-30f39c25ae)

2024-07-26 00:00:00

Oracle Linux 8 : curl (ELSA-2024-5654)

2024-08-21 00:00:00

AlmaLinux 9 : curl (ALSA-2024:5529)

2024-08-21 00:00:00

redos

ROS-20240729-18

2024-07-29 00:00:00

ROS-20240708-01

2024-07-08 00:00:00

veracode

Incorrect Default Permissions

2024-07-19 08:32:06

Memory Leakage

2024-04-06 00:29:16

alpinelinux

CVE-2024-5321

2024-07-18 19:15:12

CVE-2024-2398

2024-03-27 08:15:41

ubuntucve

CVE-2024-5321

2024-07-18 00:00:00

CVE-2024-2398

2024-03-27 00:00:00

vulnrichment

CVE-2024-5321 Incorrect permissions on Windows containers logs

2024-07-18 18:15:25

CVE-2024-2398 HTTP/2 push headers memory-leak

2024-03-27 07:55:48

cvelist

CVE-2024-5321 Incorrect permissions on Windows containers logs

2024-07-18 18:15:25

CVE-2024-2398 HTTP/2 push headers memory-leak

2024-03-27 07:55:48

redhat

(RHSA-2024:6460) Moderate: Red Hat OpenShift for Windows Containers 9.0.3 product release & security update

2024-09-09 00:26:41

(RHSA-2024:3998) Moderate: curl security update

2024-06-20 04:58:47

(RHSA-2024:5529) Moderate: curl security update

2024-08-19 00:59:44

ibm

Security Bulletin: IBM Automation Decision Services for August 2024 - Multiple CVEs addressed

2024-09-10 05:21:14

Security Bulletin: Security vulnerability found in curl package shipped with IBM CICS TX Advanced 10.1

2024-05-24 14:17:21

Security Bulletin: AIX is vulnerable to a denial of service (CVE-2024-2398) and security restrictions bypass (CVE-2024-2466, CVE-2024-2004) due to cURL libcurl

2024-08-22 22:08:28

nvd

CVE-2024-5321

2024-07-18 19:15:12

CVE-2024-2398

2024-03-27 08:15:41

github

Kubernetes sets incorrect permissions on Windows containers logs

2024-07-18 21:30:38

debiancve

CVE-2024-5321

2024-07-18 19:15:12

CVE-2024-2398

2024-03-27 08:15:41

openvas

Fedora: Security Advisory (FEDORA-2024-30f39c25ae)

2024-08-06 00:00:00

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2024-2322)

2024-09-03 00:00:00

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2024-2208)

2024-08-21 00:00:00

cve

CVE-2024-5321

2024-07-18 19:15:12

CVE-2024-2398

2024-03-27 08:15:41

redhatcve

CVE-2024-5321

2024-07-18 19:55:39

CVE-2024-2398

2024-03-27 09:27:15

wolfi

CVE-2024-5321 vulnerabilities

2024-09-19 09:11:50

CVE-2024-2398 vulnerabilities

2024-09-19 09:11:50

hackerone

Internet Bug Bounty: CVE-2024-2398: HTTP/2 push headers memory-leak

2024-03-31 20:25:17

curl: CVE-2024-2398: HTTP/2 push headers memory-leak

2024-03-05 16:56:33

cbl_mariner

CVE-2024-2398 affecting package curl for versions less than 8.8.0-1

2024-08-05 03:22:58

CVE-2024-2398 affecting package curl for versions less than 8.8.0-1

2024-07-22 15:42:40

cgr

CVE-2024-2398 vulnerabilities

2024-05-19 03:07:16

K000140029: libcurl vulnerability CVE-2024-2398

2024-06-18 00:00:00

ubuntu

curl vulnerability

2024-03-27 00:00:00

curl vulnerabilities

2024-04-29 00:00:00

curl vulnerabilities

2024-03-27 00:00:00

oraclelinux

curl security update

2024-08-20 00:00:00

curl security update

2024-08-19 00:00:00

almalinux

Moderate: curl security update

2024-08-20 00:00:00

Moderate: curl security update

2024-08-19 00:00:00

amazon

Medium: curl

2024-04-24 22:15:00

cloudfoundry

USN-6718-1: curl vulnerabilities | Cloud Foundry

2024-05-02 00:00:00

photon

Important Photon OS Security Update - PHSA-2024-4.0-0585

2024-03-27 00:00:00

Important Photon OS Security Update - PHSA-2024-5.0-0233

2024-03-27 00:00:00

Important Photon OS Security Update - PHSA-2024-3.0-0743

2024-03-27 00:00:00

aix

AIX is vulnerable to a denial of service (CVE-2024-2398) and security restrictions bypass (CVE-2024-2466 CVE-2024-2004) due to cURL libcurl

2024-08-22 15:50:03

mageia

Updated curl packages fix security vulnerabilities

2024-03-29 06:49:09

slackware

[slackware-security] curl

2024-03-27 19:16:33

ics

Siemens SINEMA

2024-09-12 12:00:00

apple

About the security content of macOS Monterey 12.7.6

2024-07-29 00:00:00

About the security content of macOS Ventura 13.6.8

2024-07-29 00:00:00

About the security content of macOS Sonoma 14.6

2024-07-29 00:00:00

HP ThinPro 8.0 SP 9 Security Updates

2024-06-17 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

CVSS3

8.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

AI Score

9.5

Confidence

High

JSON

Related for RHSA-2024:6734