Published: 26/05/2023 Updated: 20/10/2023

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 0

A use after free vulnerability exists in curl <v8.1.0 in the way libcurl offers a feature to verify an SSH server's public key using a SHA 256 hash. When this check fails, libcurl would free the memory for the fingerprint before it returns an error message containing the (now freed) hash. This flaw risks inserting sensitive heap-based data into the error message that might be shown to users or otherwise get leaked and revealed.

Vulnerable Product	Search on Vulmon	Subscribe to Product
haxx curl
apple macos
netapp clustered data ontap -
netapp ontap antivirus connector -
netapp h300s_firmware -
netapp h500s_firmware -
netapp h700s_firmware -
netapp h410s_firmware -

Debian Bug report logs - #1036239 curl: CVE-2023-28319 CVE-2023-28320 CVE-2023-28321 CVE-2023-28322 Package: src:curl; Maintainer for src:curl is Alessandro Ghedini <ghedo@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 17 May 2023 20:57:02 UTC Severity: grave Tags: security, upstream F ...

Synopsis Moderate: Red Hat JBoss Core Services Apache HTTP Server 2457 security update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update is now available for Red Hat JBoss Core ServicesRed Hat Product Security h ...

Synopsis Moderate: Red Hat JBoss Core Services Apache HTTP Server 2457 security update Type/Severity Security Advisory: Moderate Topic Red Hat JBoss Core Services Apache HTTP Server 2457 is now availableRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) bas ...

Integer overflow vulnerability in tool_operatec in curl 7652 via crafted value as the retry delay (CVE-2020-19909) libcurl offers a feature to verify an SSH server's public key using a SHA 256 hash When this check fails, libcurl would free the memory for the fingerprint before it returns an error message containing the (now freed) hash This f ...

Description This CVE is under investigation by Red Hat Product Security ...

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available Recent releases are listed on the Apple security updates page Apple security documents reference vulnerabilities by CVE-ID&nbsp ...

Critical Infrastructure Sectors: Critical Manufacturing

Assessing security of v8.0.1 of the CLI tool curl

Security Evaluation of curl Written in collaberation with Michael Choi, Theodore Lau, Adam Murtagh, Sami Hamide, Alexander West for UCLA CS 136, Computer Security Summary In this report, we assess and rate the security of version 801 of the well-known command-line URL data transfer tool curl We approached this analysis from three angles — researching previous vulnerab

CWE-416 https://hackerone.com/reports/1913733 https://security.netapp.com/advisory/ntap-20230609-0009/https://support.apple.com/kb/HT213844 https://support.apple.com/kb/HT213843 https://support.apple.com/kb/HT213845 http://seclists.org/fulldisclosure/2023/Jul/47 http://seclists.org/fulldisclosure/2023/Jul/48 http://seclists.org/fulldisclosure/2023/Jul/52 https://security.gentoo.org/glsa/202310-12 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036239 https://nvd.nist.gov https://github.com/awest25/Curl-Security-Evaluation https://www.cisa.gov/news-events/ics-advisories/icsa-24-046-15 https://alas.aws.amazon.com/AL2/ALAS-2023-2230.html

CVE-2023-28319

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

ICS Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect