hackerone - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	H1:3418776	curl: Silent TLS Trust Model Hijacking via `CURL_CA_BUNDLE` Environment Variable Leads to MITM_H1:3418776 ## Summary: curl is vulnerable to silent Man-in-the-Middle (MITM) attacks due to its design, which implicitly trusts the CA certificate path specif...	N/A	N/A	Nov 10, 2025	HACKERONE
NONE	H1:3418616	curl: SMTP CRLF Injection in curl/libcurl via MAIL FROM/RCPT TO parameters_H1:3418616 SMTP CRLF Injection Vulnerability in curl/libcurl ## Vulnerability ID: CURL-SMTP-CRLF-2024 ## CWE-93: Improper Neutralization of CRLF Sequences ##...	N/A	N/A	Nov 10, 2025	HACKERONE
NONE	H1:3418646	curl: Arbitrary Configuration File Inclusion: via External Control of File Name or Path_H1:3418646 ## Summary: The Arbitrary Configuration File Inclusion (ACFI) vulnerability was identified in the curl utility via the --config option. This flaw ...	N/A	N/A	Nov 10, 2025	HACKERONE
NONE	H1:3417428	curl: libcurl MQTT `CURLOPT_POSTFIELDSIZE_LARGE` overflow leads to immediate DoS_H1:3417428 ## Summary An attacker can crash or forcefully abort any application that uses libcurl's MQTT support by setting an excessively large value for `CU...	N/A	N/A	Nov 9, 2025	HACKERONE
NONE	H1:3418528	curl: Unsafe use of strcpy in Curl_ldap_err2string (packages/OS400/os400sys.c) — stack-buffer-overflow (PoC + ASan)_H1:3418528 I've provided the detailed description and clear steps previously, but it seems you need the content tailored directly for the submission form's fi...	N/A	N/A	Nov 10, 2025	HACKERONE
NONE	H1:3414088	curl: SMTP CRLF Command Injection in CURLOPT_MAIL_FROM and CURLOPT_MAIL_RCPT_H1:3414088 libcurl's SMTP implementation accepts CR (`\r`) and LF (`\n`) bytes in mailbox address inputs without validation. These control characters are inse...	N/A	N/A	Nov 6, 2025	HACKERONE
NONE	H1:3409186	curl: Hi Hacker_H1:3409186 Hi Hacker ## Impact ## Summary:	N/A	N/A	Nov 3, 2025	HACKERONE
NONE	H1:3409193	curl: HackerOne_H1:3409193 HackerOne ## Impact HackerOne	N/A	N/A	Nov 3, 2025	HACKERONE
NONE	H1:3408126	curl: Directory Traversal Vulnerability in cURL via Content-Disposition Header Processing_H1:3408126 Vulnerability Description The parse_filename function in src/tool_cb_hdr.c does not adequately validate and sanitize filenames extracted from HTTP ...	N/A	N/A	Nov 1, 2025	HACKERONE
NONE	H1:3404025	curl: SOCKS5 Heap Buffer Overflow via Malicious HTTP Redirect with Oversized Hostname_H1:3404025 ## Summary: A heap-based buffer overflow vulnerability exists in curl's SOCKS5 proxy handshake implementation when processing HTTP redirects contai...	N/A	N/A	Oct 29, 2025	HACKERONE