#VU83900 Information disclosure in cURL - CVE-2023-46218


Vulnerability identifier: #VU83900

Vulnerability risk: Low

CVSSv4.0: 1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-46218

CWE-ID: CWE-200

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
cURL
Client/Desktop applications / Other client software

Vendor: curl.haxx.se

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to an error in curl that allows a malicious HTTP server to set "super cookies" that are then passed back to more origins than what is otherwise allowed or possible. A remote attacker can force curl to send such cookie to different and unrelated sites and domains.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

cURL: 7.46.0 - 8.4.0

External links
https://curl.haxx.se/docs/CVE-2023-46218.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in IBM webMethods Managed File Transfer
Dell EMC NetWorker vProxy update for third-party components
PowerProtect Data Protection software update for third-party components
Anolis OS update for curl
Multiple vulnerabilities in Oracle Communications Diameter Signaling Router
Multiple vulnerabilities in Dell PowerScale OneFS
Information disclosure in BIG-IQ Centralized Management libcurl
Information disclosure in BIG-IP Next SPK/CNF libcurl
F5 BIG-IP update for cURL
Multiple vulnerabilities in IBM Total Storage Service Console (TSSC) / TS4500 IMC