Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-46218

Published: 07/12/2023 Updated: 25/01/2024
CVSS v3 Base Score: 6.5 | Impact Score: 2.5 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Haxx

Vulnerability Summary

This flaw allows a malicious HTTP server to set "super cookies" in curl that are then passed back to more origins than what is otherwise allowed or possible. This allows a site to set cookies that then would get sent to different and unrelated sites and domains. It could do this by exploiting a mixed case flaw in curl's function that verifies a given cookie domain against the Public Suffix List (PSL). For example a cookie could be set with `domain=co.UK` when the URL used a lower case hostname `curl.co.uk`, even though `co.uk` is listed as a PSL domain.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

haxx curl

fedoraproject fedora 39

Vendor Advisories

Debian CVElist Bug Report Logs: curl: CVE-2023-46218
Debian Bug report logs - #1057646 curl: CVE-2023-46218 Package: src:curl; Maintainer for src:curl is Debian Curl Maintainers <team+curl@trackerdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 6 Dec 2023 13:45:04 UTC Severity: important Tags: security, upstream Found in versions curl/7 ...
Debian CVElist Bug Report Logs: curl: CVE-2023-46219
Debian Bug report logs - #1057645 curl: CVE-2023-46219 Package: src:curl; Maintainer for src:curl is Debian Curl Maintainers <team+curl@trackerdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 6 Dec 2023 13:45:01 UTC Severity: important Tags: security, upstream Found in versions curl/8 ...
Red Hat: Moderate: curl security and bug fix update
Synopsis Moderate: curl security and bug fix update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for curl is now available for Red Hat Enterprise Linux 88 Extended Update SupportRed Hat Product Security has ...
Red Hat: Moderate: curl security update
Synopsis Moderate: curl security update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for curl is now available for Red Hat Enterprise Linux 92 Extended Update SupportRed Hat Product Security has rated this u ...
Red Hat: Moderate: curl security update
Synopsis Moderate: curl security update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for curl is now available for Red Hat Enterprise Linux 90 Extended Update SupportRed Hat Product Security has rated this u ...
Debian Security Advisories: DSA-5587-1 curl -- security update
Two security issues were discovered in Curl: Cookies were incorrectly validated against the public suffix list of domains and in same cases HSTS data could fail to save to disk For the oldstable distribution (bullseye), these problems have been fixed in version 7740-13+deb11u11 For the stable distribution (bookworm), these problems have been f ...
Amazon Linux 2: ALAS-2024-2385
This flaw allows a malicious HTTP server to set "super cookies" in curl that are then passed back to more origins than what is otherwise allowed or possible This allows a site to set cookies that then would get sent to different and unrelated sites and domains It could do this by exploiting a mixed case flaw in curl's function that verifies a giv ...
Amazon Linux 2: ALAS-2024-2531
This flaw allows a malicious HTTP server to set "super cookies" in curl that are then passed back to more origins than what is otherwise allowed or possible This allows a site to set cookies that then would get sent to different and unrelated sites and domains It could do this by exploiting a mixed case flaw in curl's function that verifies a giv ...
Red Hat:
Description<!---->A flaw was found in curl that verifies a given cookie domain against the Public Suffix List This issue could allow a malicious HTTP server to set "super cookies" in curl that are passed back to more origins than what is otherwise allowed or possibleA flaw was found in curl that verifies a given cookie domain against the Public S ...

References

NVD-CWE-noinfohttps://hackerone.com/reports/2212193https://curl.se/docs/CVE-2023-46218.htmlhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ZX3VW67N4ACRAPMV2QS2LVYGD7H2MVE/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOGXU25FMMT2X6UUITQ7EZZYMJ42YWWD/https://lists.debian.org/debian-lts-announce/2023/12/msg00015.htmlhttps://www.debian.org/security/2023/dsa-5587https://security.netapp.com/advisory/ntap-20240125-0007/https://nvd.nist.govhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1057646https://www.debian.org/security/2023/dsa-5587
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryptionCVE-2024-4331CVE-2024-26925arbitrary codeCVE-2006-4304CVE-2024-25458CVE-2024-27077reflected XSSCVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook