CVE-2025-9086

EPSS 0.1%
Veröffentlicht 12.09.2025 05:10:03
Zuletzt bearbeitet 04.11.2025 22:16:45
Quelle 2499f714-1537-4658-8207-48ae4b
CVE-Watchlists
Login
Unerledigt
Login

1. A cookie is set using the `secure` keyword for `https://target`
2. curl is redirected to or otherwise made to speak with `http://target` (same
   hostname, but using clear text HTTP) using the same cookie set
3. The same cookie name is set - but with just a slash as path (`path='/'`).
   Since this site is not secure, the cookie *should* just be ignored.
4. A bug in the path comparison logic makes curl read outside a heap buffer
   boundary

The bug either causes a crash or it potentially makes the comparison come to
the wrong conclusion and lets the clear-text site override the contents of the
secure cookie, contrary to expectations and depending on the memory contents
immediately following the single-byte allocation that holds the path.

The presumed and correct behavior would be to plainly ignore the second set of
the cookie since it was already set as secure on a secure host so overriding
it on an insecure host should not be okay.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

Herstellercurl

≫

Produkt curl

Default Statusunaffected

Version <= 8.15.0

Version 8.15.0

Status affected

Version <= 8.14.1

Version 8.14.1

Status affected

Version <= 8.14.0

Version 8.14.0

Status affected

Version <= 8.13.0

Version 8.13.0

Status affected

Version <= 8.12.1

Version 8.12.1

Status affected

Version <= 8.12.0

Version 8.12.0

Status affected

Version <= 8.11.1

Version 8.11.1

Status affected

Version <= 8.11.0

Version 8.11.0

Status affected

Version <= 8.10.1

Version 8.10.1

Status affected

Version <= 8.10.0

Version 8.10.0

Status affected

Version <= 8.9.1

Version 8.9.1

Status affected

Version <= 8.9.0

Version 8.9.0

Status affected

Version <= 8.8.0

Version 8.8.0

Status affected

Version <= 8.7.1

Version 8.7.1

Status affected

Version <= 8.7.0

Version 8.7.0

Status affected

Version <= 8.6.0

Version 8.6.0

Status affected

Version <= 8.5.0

Version 8.5.0

Status affected

Version <= 8.4.0

Version 8.4.0

Status affected

Version <= 8.3.0

Version 8.3.0

Status affected

Version <= 8.2.1

Version 8.2.1

Status affected

Version <= 8.2.0

Version 8.2.0

Status affected

Version <= 8.1.2

Version 8.1.2

Status affected

Version <= 8.1.1

Version 8.1.1

Status affected

Version <= 8.1.0

Version 8.1.0

Status affected

Version <= 8.0.1

Version 8.0.1

Status affected

Version <= 8.0.0

Version 8.0.0

Status affected

Version <= 7.88.1

Version 7.88.1

Status affected

Version <= 7.88.0

Version 7.88.0

Status affected

Version <= 7.87.0

Version 7.87.0

Status affected

Version <= 7.86.0

Version 7.86.0

Status affected

Version <= 7.85.0

Version 7.85.0

Status affected

Version <= 7.84.0

Version 7.84.0

Status affected

Version <= 7.83.1

Version 7.83.1

Status affected

Version <= 7.83.0

Version 7.83.0

Status affected

Version <= 7.82.0

Version 7.82.0

Status affected

Version <= 7.81.0

Version 7.81.0

Status affected

Version <= 7.80.0

Version 7.80.0

Status affected

Version <= 7.79.1

Version 7.79.1

Status affected

Version <= 7.79.0

Version 7.79.0

Status affected

Version <= 7.78.0

Version 7.78.0

Status affected

Version <= 7.77.0

Version 7.77.0

Status affected

Version <= 7.76.1

Version 7.76.1

Status affected

Version <= 7.76.0

Version 7.76.0

Status affected

Version <= 7.75.0

Version 7.75.0

Status affected

Version <= 7.74.0

Version 7.74.0

Status affected

Version <= 7.73.0

Version 7.73.0

Status affected

Version <= 7.72.0

Version 7.72.0

Status affected

Version <= 7.71.1

Version 7.71.1

Status affected

Version <= 7.71.0

Version 7.71.0

Status affected

Version <= 7.70.0

Version 7.70.0

Status affected

Version <= 7.69.1

Version 7.69.1

Status affected

Version <= 7.69.0

Version 7.69.0

Status affected

Version <= 7.68.0

Version 7.68.0

Status affected

Version <= 7.67.0

Version 7.67.0

Status affected

Version <= 7.66.0

Version 7.66.0

Status affected

Version <= 7.65.3

Version 7.65.3

Status affected

Version <= 7.65.2

Version 7.65.2

Status affected

Version <= 7.65.1

Version 7.65.1

Status affected

Version <= 7.65.0

Version 7.65.0

Status affected

Version <= 7.64.1

Version 7.64.1

Status affected

Version <= 7.64.0

Version 7.64.0

Status affected

Version <= 7.63.0

Version 7.63.0

Status affected

Version <= 7.62.0

Version 7.62.0

Status affected

Version <= 7.61.1

Version 7.61.1

Status affected

Version <= 7.61.0

Version 7.61.0

Status affected

Version <= 7.60.0

Version 7.60.0

Status affected

Version <= 7.59.0

Version 7.59.0

Status affected

Version <= 7.58.0

Version 7.58.0

Status affected

Version <= 7.57.0

Version 7.57.0

Status affected

Version <= 7.56.1

Version 7.56.1

Status affected

Version <= 7.56.0

Version 7.56.0

Status affected

Version <= 7.55.1

Version 7.55.1

Status affected

Version <= 7.55.0

Version 7.55.0

Status affected

Version <= 7.54.1

Version 7.54.1

Status affected

Version <= 7.54.0

Version 7.54.0

Status affected

Version <= 7.53.1

Version 7.53.1

Status affected

Version <= 7.53.0

Version 7.53.0

Status affected

Version <= 7.52.1

Version 7.52.1

Status affected

Version <= 7.52.0

Version 7.52.0

Status affected

Version <= 7.51.0

Version 7.51.0

Status affected

Version <= 7.50.3

Version 7.50.3

Status affected

Version <= 7.50.2

Version 7.50.2

Status affected

Version <= 7.50.1

Version 7.50.1

Status affected

Version <= 7.50.0

Version 7.50.0

Status affected

Version <= 7.49.1

Version 7.49.1

Status affected

Version <= 7.49.0

Version 7.49.0

Status affected

Version <= 7.48.0

Version 7.48.0

Status affected

Version <= 7.47.1

Version 7.47.1

Status affected

Version <= 7.47.0

Version 7.47.0

Status affected

Version <= 7.46.0

Version 7.46.0

Status affected

Version <= 7.45.0

Version 7.45.0

Status affected

Version <= 7.44.0

Version 7.44.0

Status affected

Version <= 7.43.0

Version 7.43.0

Status affected

Version <= 7.42.1

Version 7.42.1

Status affected

Version <= 7.42.0

Version 7.42.0

Status affected

Version <= 7.41.0

Version 7.41.0

Status affected

Version <= 7.40.0

Version 7.40.0

Status affected

Version <= 7.39.0

Version 7.39.0

Status affected

Version <= 7.38.0

Version 7.38.0

Status affected

Version <= 7.37.1

Version 7.37.1

Status affected

Version <= 7.37.0

Version 7.37.0

Status affected

Version <= 7.36.0

Version 7.36.0

Status affected

Version <= 7.35.0

Version 7.35.0

Status affected

Version <= 7.34.0

Version 7.34.0

Status affected

Version <= 7.33.0

Version 7.33.0

Status affected

Version <= 7.32.0

Version 7.32.0

Status affected

Version <= 7.31.0

Version 7.31.0

Status affected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.1%	0.27

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

https://curl.se/docs/CVE-2025-9086.json

https://curl.se/docs/CVE-2025-9086.html

https://hackerone.com/reports/3294999

http://www.openwall.com/lists/oss-security/2025/09/10/1

https://nvd.nist.gov/vuln/detail/CVE-2025-9086

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-9086

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-9086

EUVD