Main Vulnerability Database Vulnerabilities #VU76237

Improper certificate validation in cURL - CVE-2023-28321

Published: May 17, 2023

Vulnerability identifier: #VU76237

CSH Severity: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2023-28321

CWE-ID: CWE-295

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
cURL

Software vendor:
curl.haxx.se

Description

The vulnerability allows a remote attacker to perform MitM attack.

The vulnerability exists due to improper certificate validation when matching wildcards in TLS certificates for IDN names. A remote attacker crate a specially crafted certificate that will be considered trusted by the library.

Successful exploitation of the vulnerability requires that curl is built to use OpenSSL, Schannel or Gskit.

Remediation

Install updates from vendor's website.

External links

https://curl.haxx.se/docs/CVE-2023-28321.html

Improper certificate validation in cURL - CVE-2023-28321

Description

Remediation

External links

Please verify you're human