Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2023-23915

Date: February 22, 2023

A cleartext transmission of sensitive information vulnerability exists in curl <v7.88.0 that could cause HSTS functionality to behave incorrectly when multiple URLs are requested in parallel. Using its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear-text HTTP step even when HTTP is provided in the URL. This HSTS mechanism would however surprisingly fail when multiple transfers are done in parallel as the HSTS cache file gets overwritten by the most recentlycompleted transfer. A later HTTP-only transfer to the earlier host name would then not get upgraded properly to HSTS. After conducting further research, Mend has determined that versions 7.74.0 to 7.87.0 of curl are vulnerable to CVE-2023-23915

Language: C

Severity Score

Related Resources (10)

https://security.alpinelinux.org/vuln/CVE-2023-23915
https://hackerone.com/reports/1826048
https://seclists.org/oss-sec/2023/q1/99
https://security.netapp.com/advisory/ntap-20230309-0006/
https://nvd.nist.gov/vuln/detail/CVE-2023-23915
https://hackerone.com/reports/1874716
https://github.com/curl/curl/commit/076a2f629119222aeeb50f5a03bf9f9052fabb9a
https://security-tracker.debian.org/tracker/CVE-2023-23915
https://security.gentoo.org/glsa/202310-12
https://www.mend.io/vulnerability-database/CVE-2023-23915

Severity Score

Weakness Type (CWE)

Cleartext Transmission of Sensitive Information

CWE-319

CVSS v3.1

Base Score:
Attack Vector (AV): NETWORK
Attack Complexity (AC): LOW
Privileges Required (PR): NONE
User Interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality (C): LOW
Integrity (I): LOW
Availability (A): NONE

Do you need more information?

Contact Us