CVE-2025-4947 — Vulnetix

CVE-2025-4947 PUBLISHED

libcurl ist eine Bibliothek für Client-Software, die das Austauschen von Dateien mittels mehrerer Protokolle wie z. B. HTTP oder FTP erlaubt.

EPSS 0.08% · 22.8th percentile

Risk Scores

EPSS Score

0.08%

22.8th percentile

Affected Products

Vendor	Product	Versions
Splunk	Splunk Splunk Enterprise <9.4.4
Splunk	Splunk Splunk Enterprise <10.0.1
Splunk	Splunk Splunk Enterprise <9.3.6
SUSE	SUSE openSUSE
Tenable Security	Tenable Security Nessus Network Monitor <6.5.3
Open Source	Open Source libcurl <8.14.0
Dell	Dell Secure Connect Gateway Appliance <5.32.00.18
SUSE	SUSE Linux
Splunk	Splunk Splunk Enterprise <9.2.8

Exploit Intelligence

CVE-2025-4947: QUIC certificate check skip with wolfSSL (hackerone)
CVE-2025-4947: QUIC certificate check skip with wolfSSL (hackerone)
CVE-2025-4947: QUIC certificate check skip with wolfSSL (hackerone)
https://hackerone.com/reports/3150884 (osv)
glcve_test.go (github-poc)
glcve_test.go (github-poc)
glcve_test.go (github-poc)
glcve_test.go (github-poc)
glcve_test.go (github-poc)
glcve_test.go (github-poc)

…and 3 more exploits

Timeline

CVE Published
May 28, 2025 EPSS Score
May 28, 2025 PoC Published
Jun 4, 2025 Coalition ESS Score
Jun 8, 2025 EPSS Score
Jun 19, 2025 EPSS Score
Jun 26, 2025 Coalition ESS Score
Jun 30, 2025 EPSS Score
Jul 11, 2025 EPSS Score
Jul 22, 2025 EPSS Score
Jul 30, 2025 Coalition ESS Score
Jul 31, 2025 Coalition ESS Score

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›