CVE-2025-9086 — Vulnetix

CVE-2025-9086 PUBLISHED

EPSS 0.27% · 51.2th percentile

Risk Scores

EPSS Score

0.27%

51.2th percentile

Affected Products

Vendor	Product	Versions
Amazon	curl

Exploit Intelligence

CVE-2025-9086: Out of bounds read for cookie path (hackerone)
CVE-2025-9086: Out of bounds read for cookie path (hackerone)
CVE-2025-9086: Out of bounds read for cookie path (hackerone)
issue (cve.org)
CVE-2025-21758.yara (github-yara)
CVE-2025-21758.yara (github-yara)
CVE-2025-21758.yara (github-yara)
CVE-2025-21758.yara (github-yara)
CVE-2025-21758.yara (github-yara)
CVE-2025-21758.yara (github-yara)

…and 129 more exploits

Timeline

CVE Published
Jul 3, 2024 PoC Published
Sep 10, 2025 PoC Published
Sep 12, 2025 EPSS Score
Sep 19, 2025 EPSS Score
Sep 26, 2025 EPSS Score
Oct 4, 2025 EPSS Score
Oct 11, 2025 EPSS Score
Oct 18, 2025 EPSS Score
Oct 25, 2025 EPSS Score
Nov 2, 2025 EPSS Score
Nov 9, 2025 EPSS Score

References

ALAS2-2025-3056: curl (low) advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›