curl: Integer Overflow Risk in HTTP/2 Proxy Window Size Calculations

July 7, 2025 invoker category_news

Security Update News

Update Information

Title curl: Integer Overflow Risk in HTTP/2 Proxy Window Size Calculations
Update ID H1:3238249
Type hackerone
Published 2025-07-06T00:45:57
Last Updated 2025-07-07T10:16:48

Security Impact

CVSS Score 7.8
Severity HIGH
Attack Vector NETWORK

AI Analysis

AI Description This vulnerability is an integer overflow risk in the HTTP/2 proxy window size calculations for curl. It could potentially lead to crashes or unauthorized access. The issue is related to CVE-2019-9511 and CVE-2019-9513.
AI Severity High
AI Vendor cURL Project
AI Product curl
AI Version Not provided

Affected CVEs

  • CVE-2019-9511
  • CVE-2019-9513

Update Details

Vulnerability description not provided

View Advisory Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.