CVE-2023-28322Sensitive Information Exposure in Curl

CWE-200Sensitive Information ExposureCWE-440Expected Behavior Violation17 documents10 sources
Severity
3.7LOWNVD
OSV5.9
EPSS
0.6%
top 29.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Haxx CurlApple MacosHttps Github.com Curl Curl+1 more
Timeline
PublishedMay 26
Latest updateSep 11

Description

An information disclosure vulnerability exists in curl <v8.1.0 when doing HTTP(S) transfers, libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even when the `CURLOPT_POSTFIELDS` option has been set, if the same handle previously wasused to issue a `PUT` request which used that callback. This flaw may surprise the application and cause it to misbehave and either send off the wrong data or use memory after free or similar in the second transfer. The

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 2.2 | Impact: 1.4

Affected Packages5 packages

CVEListV5https/github.com_curl_curlFixed in 8.1.0
NVDhaxx/curl< 8.1.0
Debianhaxx/curl< 7.74.0-1.3+deb11u9+3
Ubuntuhaxx/curl< 7.68.0-1ubuntu2.19+1
NVDapple/macos11.011.7.9+2

Also affects: Fedora 37, 38

Patches

Patch: hackerone.comPatch: hackerone.com

🔴Vulnerability Details

6
OSV
curl vulnerabilities2023-09-11
OSV
curl vulnerabilities2023-07-19
OSV
curl regression2023-07-19
GHSA
GHSA-78jh-p6rf-g59w: An information disclosure vulnerability exists in curl <v82023-05-26
CVEList
CVE-2023-28322: An information disclosure vulnerability exists in curl <v82023-05-26

📋Vendor Advisories

8
Ubuntu
curl vulnerabilities2023-09-11
Apple
CVE-2023-28322: macOS Ventura 13.52023-07-24
Apple
CVE-2023-28322: macOS Monterey 12.6.82023-07-24
Apple
CVE-2023-28322: macOS Big Sur 11.7.92023-07-24
Ubuntu
curl vulnerabilities2023-07-19

💬Community

2
HackerOne
CVE-2023-28322: more POST-after-PUT confusion2023-06-25
HackerOne
CVE-2023-28322: more POST-after-PUT confusion2023-05-18
CVE-2023-28322 — Sensitive Information Exposure in Curl | cvebase