haxx
Security Risk Profile
35
/100
lowSecurity Risk Score
Comprehensive risk assessment based on 183 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from February 21, 2005 to present
183
Total CVEs
95
Critical+High
0
Exploited
13
Unpatched
Threat Assessment
Avg CVSS
6.9
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
13
Critical/High
Risk Level
35/100
low
📈 8 in Last 30 Days
Severity Distribution
Critical
35High
60Medium
78Low
10Exploit Likelihood
>50% chance
020-50%
05-20%
0<5%
17Age Distribution
Common Weaknesses (CWE)
1
Buffer Overflow
36
2
Input Validation
31
3
Infoleak
17
4
Use After Free
13
5
Integer Overflow
12
Most Affected Products
1. haxx libcurl968
2. haxx curl817
3. Splunk Universal Forwarder147
4. Canonical Ubuntu Linux116
5. redhat/curl115
Recent Vulnerabilities
See more →CVE-2026-7168
CVSS 5.3EPSS 0%medium
cross-proxy Digest auth state leak
4/29/2026
CVE-2026-6276
CVSS 7.5high
stale custom cookie host causes cookie leak
4/29/2026
CVE-2026-7009
CVSS 5.3EPSS 0%medium
OCSP stapling bypass with Apple SecTrust
4/29/2026
CVE-2026-6253
CVSS 5.9medium
proxy credentials leak over redirect-to proxy
4/29/2026
CVE-2026-6429
CVSS 5.3medium
netrc credential leak with reused proxy connection
4/29/2026
CVE-2026-5773
CVSS 7.5high
wrong reuse of SMB connection
4/29/2026
CVE-2026-5545
CVSS 6.5medium
wrong reuse of HTTP Negotiate connection
4/29/2026
CVE-2026-4873
CVSS 5.9medium
connection reuse ignores TLS requirement
4/29/2026
CVE-2026-3805
CVSS 7.5EPSS 0%high
use after free in SMB connection reuse
3/11/2026
CVE-2026-3784
CVSS 6.5EPSS 0%medium
wrong proxy connection reuse with credentials
3/11/2026
Monitor haxx in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.