Homepage
About Snyk

curl vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the curl package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Arbitrary Code Injection

*
  • C
Buffer Overflow

<7.38.0-4+deb8u16
  • H
Out-of-bounds Write

<7.38.0-4+deb8u15
  • H
Out-of-bounds Read

<7.38.0-4+deb8u14
  • C
Out-of-bounds Write

<7.38.0-4+deb8u14
  • H
Out-of-bounds Read

<7.38.0-4+deb8u14
  • C
Out-of-Bounds

<7.38.0-4+deb8u13
  • C
Out-of-bounds Read

<7.38.0-4+deb8u13
  • C
Integer Overflow or Wraparound

<7.38.0-4+deb8u12
  • H
Credentials Management

<7.10.7-1
  • H
Improper Input Validation

*
  • H
Out-of-bounds Write

<7.38.0-4+deb8u5
  • C
Double Free

<7.38.0-4+deb8u5
  • C
Out-of-bounds Write

<7.38.0-4+deb8u5
  • H
Use After Free

<7.38.0-4+deb8u5
  • H
Out-of-bounds Read

<7.38.0-4+deb8u5
  • C
Out-of-bounds Read

<7.38.0-4+deb8u5
  • H
Resource Injection

<7.38.0-4+deb8u5
  • H
Improper Input Validation

<7.38.0-4+deb8u5
  • C
Double Free

<7.38.0-4+deb8u5
  • M
Credentials Management

<7.38.0-4+deb8u5
  • C
Out-of-bounds Read

<7.38.0-4+deb8u11
  • H
Heap-based Buffer Overflow

<7.38.0-4+deb8u13
  • C
Out-of-bounds Write

<7.38.0-4+deb8u10
  • H
NULL Pointer Dereference

<7.38.0-4+deb8u10
  • C
Out-of-bounds Read

<7.38.0-4+deb8u10
  • C
CVE-2018-1000007

<7.38.0-4+deb8u9
  • C
Integer Overflow or Wraparound

<7.38.0-4+deb8u8
  • C
Out-of-bounds Read

<7.38.0-4+deb8u8
  • C
Out-of-Bounds

<7.38.0-4+deb8u7
  • H
Out-of-Bounds

<7.38.0-4+deb8u6
  • M
Information Exposure

<7.38.0-4+deb8u6
  • M
Out-of-Bounds

<7.38.0-4+deb8u6
  • L
Out-of-Bounds

*
  • C
Integer Overflow or Wraparound

<7.38.0-4+deb8u13
  • H
Improper Authentication

<7.38.0-4+deb8u13
  • H
Cryptographic Issues

<7.38.0-4+deb8u4
  • H
Improper Authorization

<7.38.0-4+deb8u4
  • H
Use After Free

<7.38.0-4+deb8u4
  • M
Improper Input Validation

*
  • H
Improper Authentication

<7.38.0-4+deb8u3
  • M
Information Exposure

<7.38.0-4+deb8u2
  • H
Out-of-Bounds

<7.38.0-4+deb8u1
  • M
Access Restriction Bypass

<7.38.0-4+deb8u1
  • M
Improper Access Control

<7.38.0-4+deb8u1
  • H
Out-of-Bounds

<7.38.0-4+deb8u1
  • M
CVE-2014-8150

<7.38.0-4
  • M
Cryptographic Issues

<7.38.0-1
  • M
Cryptographic Issues

<7.38.0-1
  • M
Information Exposure

<7.38.0-3
  • M
Improper Authentication

<7.36.0-1
  • M
Cryptographic Issues

<7.36.0-1
  • M
Improper Authentication

<7.35.0-1
  • M
Improper Input Validation

<7.34.0-1
  • M
Cryptographic Issues

<7.33.0-1
  • M
Out-of-Bounds

<7.31.0-1
  • M
Information Exposure

<7.29.0-2.1
  • H
Out-of-Bounds

<7.29.0-1
  • H
SQL Injection

<7.24.0-1
  • M
Improper Input Validation

<7.24.0-1
  • M
Credentials Management

<7.21.6-2
  • M
Access Restriction Bypass

<7.20.0-1
  • H
Cryptographic Issues

<7.19.5-1.1
  • M
Cross-site Request Forgery (CSRF)

<7.18.2-8.1
  • H
CVE-2007-3564

<7.16.4-1
  • H
CVE-2006-1061

<7.15.3-1
  • M
Numeric Errors

<7.15.1-1
  • H
Out-of-Bounds

<7.15.0-1
  • H
CVE-2005-0490

<7.13.0-2