undefined | Better HN

0 pointsnubinetwork1y ago0 comments

> There are many wannabe security researchers who find issues that are definitely not exploitable, and then demand CVE numbers and other forms of recognition or even a bounty

I believe this has happened to curl several times recently.

0 comments

umanwizard1y ago

It happens constantly to any startup with a security@ email address.

j / k navigate · click thread line to collapse

0 pointsnubinetwork1y ago0 comments

> There are many wannabe security researchers who find issues that are definitely not exploitable, and then demand CVE numbers and other forms of recognition or even a bounty

I believe this has happened to curl several times recently.

0 comments

umanwizard1y ago

It happens constantly to any startup with a security@ email address.

j / k navigate · click thread line to collapse