curl is vulnerable to denial of service attacks. A malicious user is able to cause an application crash via serving excessive amounts of set-cookie headers in a HTTP response to curl.

References

seclists.org/fulldisclosure/2022/Oct/28

seclists.org/fulldisclosure/2022/Oct/41

cert-portal.siemens.com/productcert/pdf/ssa-333517.pdf

hackerone.com/reports/1569946

lists.fedoraproject.org/archives/list/[email protected]/message/BEV6BR4MTI3CEWK2YU2HQZUW5FAS3FEY/

secdb.alpinelinux.org/edge/main.yaml

secdb.alpinelinux.org/v3.13/main.yaml

secdb.alpinelinux.org/v3.14/main.yaml

secdb.alpinelinux.org/v3.15/main.yaml

secdb.alpinelinux.org/v3.16/main.yaml

security.gentoo.org/glsa/202212-01

security.netapp.com/advisory/ntap-20220915-0003/

support.apple.com/kb/HT213488

www.debian.org/security/2022/dsa-5197

redhatcve 1

osv 3

alpinelinux 1

cve 1

nessus 23

cbl_mariner 2

debiancve 1

nvd 1

hackerone 2

prion 1

ubuntucve 1

cvelist 1

openvas 15

ubuntu 1

fedora 2

cloudfoundry 1

slackware 1

mageia 1

freebsd 1

photon 5

ics 5

suse 1

ibm 8

amazon 1

debian 1

gentoo 1

apple 1

tenable 1

oracle 1

redhatcve

CVE-2022-32205

2022-06-28 03:35:40

osv

CVE-2022-32205

2022-07-07 13:15:08

curl vulnerabilities

2022-06-27 14:14:25

curl - security update

2022-08-01 00:00:00

alpinelinux

CVE-2022-32205

2022-07-07 13:15:08

cve

CVE-2022-32205

2022-07-07 13:15:08

nessus

Siemens SCALANCE XCM332 Allocation of Resources Without Limits or Throttling (CVE-2022-32205)

2023-04-11 00:00:00

CBL Mariner 2.0 Security Update: curl (CVE-2022-32205)

2023-03-20 00:00:00

EulerOS 2.0 SP10 : curl (EulerOS-SA-2022-2413)

2022-10-08 00:00:00

cbl_mariner

CVE-2022-32205 affecting package curl for versions less than 7.84.0-1

2022-08-03 21:15:00

CVE-2022-32205 affecting package curl 7.76.0-9

2022-08-24 22:05:05

debiancve

CVE-2022-32205

2022-07-07 13:15:08

nvd

CVE-2022-32205

2022-07-07 13:15:08

hackerone

Internet Bug Bounty: CVE-2022-32205: Set-Cookie denial of service

2022-06-27 07:01:28

curl: CVE-2022-32205: Set-Cookie denial of service

2022-05-13 19:53:49

prion

Security feature bypass

2022-07-07 13:15:00

ubuntucve

CVE-2022-32205

2022-06-27 00:00:00

cvelist

CVE-2022-32205

2022-07-07 00:00:00

openvas

Fedora: Security Advisory for curl (FEDORA-2022-1b3d7f6973)

2022-07-16 00:00:00

Ubuntu: Security Advisory (USN-5495-1)

2022-06-28 00:00:00

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2022-2426)

2022-10-10 00:00:00

ubuntu

curl vulnerabilities

2022-06-27 00:00:00

fedora

[SECURITY] Fedora 36 Update: curl-7.82.0-6.fc36

2022-07-01 01:09:59

[SECURITY] Fedora 35 Update: curl-7.79.1-5.fc35

2022-07-15 01:36:25

cloudfoundry

USN-5495-1: curl vulnerabilities | Cloud Foundry

2022-12-07 00:00:00

slackware

[slackware-security] curl

2022-06-28 19:27:52

mageia

Updated curl packages fix security vulnerability

2022-07-05 22:11:26

freebsd

cURL -- Multiple vulnerabilities

2022-06-27 00:00:00

photon

Moderate Photon OS Security Update - PHSA-2022-0412

2022-06-30 00:00:00

Moderate Photon OS Security Update - PHSA-2022-0491

2022-06-30 00:00:00

Critical Photon OS Security Update - PHSA-2022-3.0-0412

2022-06-30 00:00:00

ics

Siemens SCALANCE SC-600 Family

2022-12-15 12:00:00

Siemens SCALANCE XCM332

2023-04-13 12:00:00

Siemens SINAMICS Medium Voltage Products

2023-06-15 12:00:00

suse

Security update for curl (important)

2022-07-06 00:00:00

ibm

Security Bulletin: IBM MaaS360 Cloud Extender Agent and Base Module uses libcurl with multiple known vulnerabilities (CVE-2022-32205, CVE-2022-32206, CVE-2022-32207, CVE-2022-32208)

2022-10-06 04:10:57

Security Bulletin: Multiple vulnerabilities in Curl affect PowerSC

2023-01-19 20:14:45

Security Bulletin: Multiple vulnerabilities in libcURL affect IBM Rational ClearCase ( CVE-2022-42915, CVE-2022-42916, CVE-2022-32221, CVE-2022-35252, CVE-2022-32205, CVE-2022-32206, CVE-2022-32207 )

2023-01-31 14:06:26

amazon

Medium: curl

2022-10-31 19:40:00

debian

[SECURITY] [DSA 5197-1] curl security update

2022-08-01 16:58:44

gentoo

curl: Multiple Vulnerabilities

2022-12-19 00:00:00

apple

About the security content of macOS Ventura 13

2022-10-24 00:00:00

tenable

[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities

2023-06-29 10:45:47

oracle

Oracle Critical Patch Update Advisory - October 2022

2022-10-18 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

EPSS

0.003

Percentile

68.5%

JSON

Related for VERACODE:36239