A logic flaw has been found in cURL before 8.4.0, which allows an attacker to insert cookies at will into a running program using libcurl, if the specific series of conditions are met.
A logic flaw has been found in cURL before 8.4.0, which allows an attacker to insert cookies at will into a running program using libcurl, if the specific series of conditions are met.
https://curl.se/docs/CVE-2023-38546.html https://github.com/curl/curl/commit/61275672b46d9abb32857404