VDB
JLSEC-2025-35
JLSEC-2025-35
PUBLISHED
CVSS 9.300000190734863 CRITICAL
This flaw allows an attacker to insert cookies at will into a running program using libcurl, if the ...
Risk Scores
CVSS v4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Julia | LibCURL_jll | 0, 0 |
| Julia | CURL_jll | 0, 0 |
Timeline
- Oct 10, 2025 CVE Published
- Nov 6, 2025 CVE Updated
References
- http://seclists.org/fulldisclosure/2024/Jan/34 url
- http://seclists.org/fulldisclosure/2024/Jan/37 url
- http://seclists.org/fulldisclosure/2024/Jan/38 url
- https://curl.se/docs/CVE-2023-38546.html url
- https://forum.vmssoftware.com/viewtopic.php?f=8&t=8868 url
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OGMXNRNSJ4ETDK6FRNU3J7SABXPWCHSQ/ url
- https://support.apple.com/kb/HT214036 url
- https://support.apple.com/kb/HT214057 url
- https://support.apple.com/kb/HT214058 url
- https://support.apple.com/kb/HT214063 url