[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2016-8616":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":26,"aliases":27,"duplicate_of":9,"upstream":28,"downstream":29,"duplicates":54,"related":55,"reserved_at":9,"published_at":61,"modified_at":62,"state":63,"summary":64,"references_raw":73,"kevs":125,"epss":126,"epss_history":129,"metrics":388,"affected":405},"CVE-2016-8616","A flaw was found in curl before version 7.51.0 When re-using a connection, curl was doing case insensitive comparisons of user name and password with the existing connections. This means that if an unused connection with proper credentials exists for a protocol that has connection-scoped credentials, an attacker can cause that connection to be reused if s/he knows the case-insensitive version of the correct password.",null,[11,18],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"CWE-255","Credentials Management Errors","Weaknesses in this category are related to the management of credentials.","category","Draft",[],{"_key":19,"id":19,"name":20,"description":21,"type":22,"status":23,"abstraction":24,"likelihood_of_exploit":9,"capec":25},"CWE-592","DEPRECATED: Authentication Bypass Issues","This weakness has been deprecated because it covered redundant concepts already described in CWE-287.","weakness","Deprecated","Class",[],[],[],[],[30,32,34,36,38,40,42,44,46,48,50,52],{"_key":31},"ALPINE-CVE-2016-8616",{"_key":33},"SUSE-SU-2016:2714-1",{"_key":35},"SUSE-SU-2016:2699-1",{"_key":37},"SUSE-SU-2016:2700-1",{"_key":39},"OPENSUSE-SU-2024:10303-1",{"_key":41},"DLA-711-1",{"_key":43},"DSA-3705-1",{"_key":45},"MGASA-2018-0053",{"_key":47},"UBUNTU-CVE-2016-8616",{"_key":49},"USN-3123-1",{"_key":51},"DEBIAN-CVE-2016-8616",{"_key":53},"RHSA-2018:3558",[],[56,57,58,59,60],{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":45},"2018-08-01T06:00:00.000Z","2024-08-06T02:27:40.954Z","Modified",{"cisa_kev":65,"cisa_ransomware":65,"cisa_vendor":9,"epss_severity":66,"epss_score":67,"severity":68,"severity_score":69,"severity_version":70,"severity_source":71,"severity_vector":72,"severity_status":63},false,"low",0.04507,"medium",5.9,"v3.0","nvd","CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",[74,82,88,94,99,103,107,112,116,120],{"url":75,"sources":76,"tags":78},"http://www.securityfocus.com/bid/94094",[77,71],"cve.org",[79,80,81],"VDB Entry","X Refsource BID","Third Party Advisory",{"url":83,"sources":84,"tags":85},"https://access.redhat.com/errata/RHSA-2018:3558",[77,71],[86,87,81],"Vendor Advisory","X Refsource REDHAT",{"url":89,"sources":90,"tags":91},"https://curl.haxx.se/docs/adv_20161102B.html",[77,71],[92,93,86],"X Refsource CONFIRM","Patch",{"url":95,"sources":96,"tags":97},"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8616",[77,71],[92,98,93,86],"Issue Tracking",{"url":100,"sources":101,"tags":102},"https://curl.haxx.se/CVE-2016-8616.patch",[77,71],[92,93,86],{"url":104,"sources":105,"tags":106},"https://www.tenable.com/security/tns-2016-21",[77,71],[92,81],{"url":108,"sources":109,"tags":110},"http://www.securitytracker.com/id/1037192",[77,71],[79,111,81],"X Refsource SECTRACK",{"url":113,"sources":114,"tags":115},"http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html",[77,71],[92,93],{"url":117,"sources":118,"tags":119},"https://access.redhat.com/errata/RHSA-2018:2486",[77,71],[86,87,81],{"url":121,"sources":122,"tags":123},"https://security.gentoo.org/glsa/201701-47",[77,71],[86,124,81],"X Refsource GENTOO",[],{"date":127,"score":67,"percentile":128},"2026-06-04",0.89324,[130,134,137,140,143,147,150,152,155,158,161,164,167,170,173,176,179,182,185,188,191,193,196,199,202,204,207,211,214,217,219,222,224,227,230,232,235,238,241,244,247,250,252,255,257,260,263,265,268,270,273,275,278,281,284,287,290,293,296,299,302,305,308,311,313,315,318,320,323,326,329,332,336,339,342,345,348,350,353,355,358,361,364,367,370,373,376,379,382,385],{"date":131,"score":132,"percentile":133},"2025-11-04",0.03941,0.87826,{"date":135,"score":132,"percentile":136},"2025-11-05",0.87829,{"date":138,"score":132,"percentile":139},"2025-11-06",0.87816,{"date":141,"score":132,"percentile":142},"2025-11-07",0.87822,{"date":144,"score":145,"percentile":146},"2025-11-08",0.0413,0.88122,{"date":148,"score":145,"percentile":149},"2025-11-09",0.88117,{"date":151,"score":145,"percentile":149},"2025-11-10",{"date":153,"score":145,"percentile":154},"2025-11-11",0.88123,{"date":156,"score":145,"percentile":157},"2025-11-12",0.8813,{"date":159,"score":145,"percentile":160},"2025-11-13",0.88135,{"date":162,"score":145,"percentile":163},"2025-11-14",0.88139,{"date":165,"score":145,"percentile":166},"2025-11-15",0.88134,{"date":168,"score":145,"percentile":169},"2025-11-16",0.88137,{"date":171,"score":145,"percentile":172},"2025-11-17",0.88133,{"date":174,"score":145,"percentile":175},"2025-11-18",0.87505,{"date":177,"score":145,"percentile":178},"2025-11-19",0.87509,{"date":180,"score":145,"percentile":181},"2025-11-20",0.87513,{"date":183,"score":145,"percentile":184},"2025-11-21",0.88148,{"date":186,"score":145,"percentile":187},"2025-11-22",0.88147,{"date":189,"score":145,"percentile":190},"2025-11-23",0.88142,{"date":192,"score":145,"percentile":190},"2025-11-24",{"date":194,"score":145,"percentile":195},"2025-11-25",0.88143,{"date":197,"score":145,"percentile":198},"2025-11-26",0.88144,{"date":200,"score":145,"percentile":201},"2025-11-27",0.88145,{"date":203,"score":145,"percentile":160},"2025-11-28",{"date":205,"score":145,"percentile":206},"2025-11-29",0.8821,{"date":208,"score":209,"percentile":210},"2025-11-30",0.0294,0.85982,{"date":212,"score":209,"percentile":213},"2025-12-01",0.86037,{"date":215,"score":209,"percentile":216},"2025-12-02",0.86039,{"date":218,"score":209,"percentile":216},"2025-12-03",{"date":220,"score":209,"percentile":221},"2025-12-04",0.85978,{"date":223,"score":209,"percentile":210},"2025-12-05",{"date":225,"score":209,"percentile":226},"2025-12-06",0.85977,{"date":228,"score":209,"percentile":229},"2025-12-07",0.85964,{"date":231,"score":209,"percentile":229},"2025-12-08",{"date":233,"score":209,"percentile":234},"2025-12-09",0.85971,{"date":236,"score":209,"percentile":237},"2025-12-10",0.85991,{"date":239,"score":209,"percentile":240},"2025-12-11",0.85997,{"date":242,"score":209,"percentile":243},"2025-12-12",0.85998,{"date":245,"score":209,"percentile":246},"2025-12-13",0.85994,{"date":248,"score":209,"percentile":249},"2025-12-14",0.85984,{"date":251,"score":209,"percentile":221},"2025-12-15",{"date":253,"score":209,"percentile":254},"2025-12-16",0.85985,{"date":256,"score":209,"percentile":237},"2025-12-17",{"date":258,"score":209,"percentile":259},"2025-12-18",0.85996,{"date":261,"score":209,"percentile":262},"2025-12-19",0.85999,{"date":264,"score":209,"percentile":259},"2025-12-20",{"date":266,"score":209,"percentile":267},"2025-12-21",0.86,{"date":269,"score":209,"percentile":237},"2025-12-22",{"date":271,"score":209,"percentile":272},"2025-12-23",0.85995,{"date":274,"score":209,"percentile":267},"2025-12-24",{"date":276,"score":209,"percentile":277},"2025-12-25",0.86012,{"date":279,"score":209,"percentile":280},"2025-12-26",0.86015,{"date":282,"score":209,"percentile":283},"2025-12-27",0.86062,{"date":285,"score":209,"percentile":286},"2025-12-28",0.86008,{"date":288,"score":209,"percentile":289},"2025-12-29",0.86003,{"date":291,"score":209,"percentile":292},"2025-12-30",0.8601,{"date":294,"score":209,"percentile":295},"2025-12-31",0.86019,{"date":297,"score":209,"percentile":298},"2026-01-01",0.8608,{"date":300,"score":209,"percentile":301},"2026-01-02",0.86086,{"date":303,"score":209,"percentile":304},"2026-01-03",0.86085,{"date":306,"score":209,"percentile":307},"2026-01-04",0.86024,{"date":309,"score":209,"percentile":310},"2026-01-05",0.86023,{"date":312,"score":209,"percentile":307},"2026-01-06",{"date":314,"score":209,"percentile":307},"2026-01-07",{"date":316,"score":209,"percentile":317},"2026-01-08",0.86033,{"date":319,"score":209,"percentile":317},"2026-01-09",{"date":321,"score":209,"percentile":322},"2026-01-10",0.8603,{"date":324,"score":209,"percentile":325},"2026-01-11",0.86025,{"date":327,"score":209,"percentile":328},"2026-01-12",0.86022,{"date":330,"score":209,"percentile":331},"2026-01-13",0.86017,{"date":333,"score":334,"percentile":335},"2026-01-14",0.03084,0.86377,{"date":337,"score":334,"percentile":338},"2026-01-15",0.86376,{"date":340,"score":334,"percentile":341},"2026-01-16",0.86379,{"date":343,"score":334,"percentile":344},"2026-01-17",0.86382,{"date":346,"score":334,"percentile":347},"2026-01-18",0.86384,{"date":349,"score":334,"percentile":335},"2026-01-19",{"date":351,"score":334,"percentile":352},"2026-01-20",0.86372,{"date":354,"score":334,"percentile":335},"2026-01-21",{"date":356,"score":334,"percentile":357},"2026-01-22",0.86383,{"date":359,"score":334,"percentile":360},"2026-01-23",0.86399,{"date":362,"score":334,"percentile":363},"2026-01-24",0.86407,{"date":365,"score":334,"percentile":366},"2026-01-25",0.86402,{"date":368,"score":334,"percentile":369},"2026-01-26",0.864,{"date":371,"score":334,"percentile":372},"2026-01-27",0.86403,{"date":374,"score":334,"percentile":375},"2026-01-28",0.86406,{"date":377,"score":334,"percentile":378},"2026-01-29",0.86408,{"date":380,"score":334,"percentile":381},"2026-01-30",0.86412,{"date":383,"score":334,"percentile":384},"2026-01-31",0.86413,{"date":386,"score":334,"percentile":387},"2026-02-01",0.86478,[389,396],{"source":77,"cvss_v2_0":9,"cvss_v3_0":390,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":391,"baseSeverity":392,"vectorString":393,"impactScore":394,"exploitabilityScore":395},3.7,"LOW","CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",2.3,5.6,{"source":71,"cvss_v2_0":397,"cvss_v3_0":402,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":398,"baseSeverity":9,"vectorString":399,"impactScore":400,"exploitabilityScore":401},4.3,"AV:N/AC:M/Au:N/C:N/I:P/A:N",2.9,8.6,{"baseScore":69,"baseSeverity":403,"vectorString":72,"impactScore":404,"exploitabilityScore":395},"MEDIUM",6,[406,417],{"ecosystem":9,"name":407,"vendor":408,"product":407,"cpe_part":409,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":410},"curl","haxx","a",[411],{"version":412,"is_range":413,"range_type":414,"version_start":9,"version_start_type":9,"version_end":415,"version_end_type":416,"fixed_in":9},"lt7.51.0",true,"cpe","7.51.0","excluding",{"ecosystem":9,"name":407,"vendor":418,"product":407,"cpe_part":409,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":419},"the curl project",[420],{"version":415,"is_range":65,"range_type":77,"version_start":415,"version_start_type":421,"version_end":415,"version_end_type":421,"fixed_in":9},"including"]