CVE-2018-1000007
- EPSS 2.93%
- Veröffentlicht 24.01.2018 22:29:00
- Zuletzt bearbeitet 21.11.2024 03:39:24
libcurl 7.1 through 7.57.0 might accidentally leak authentication data to third parties. When asked to send custom headers in its HTTP requests, libcurl will send that set of headers first to the host in the initial URL but also, if asked to follow r...
CVE-2016-8610
- EPSS 69.1%
- Veröffentlicht 13.11.2017 22:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
A denial of service flaw was found in OpenSSL 0.9.8, 1.0.1, 1.0.2 through 1.0.2h, and 1.1.0 in the way the TLS/SSL protocol defined processing of ALERT packets during a connection handshake. A remote attacker could use this flaw to make a TLS/SSL ser...
CVE-2013-2566
- EPSS 90.32%
- Veröffentlicht 15.03.2013 21:55:01
- Zuletzt bearbeitet 11.04.2025 00:51:21
The RC4 algorithm, as used in the TLS protocol and SSL protocol, has many single-byte biases, which makes it easier for remote attackers to conduct plaintext-recovery attacks via statistical analysis of ciphertext in a large number of sessions that u...