Lucene search
CVE-2023-23914
A cleartext transmission vulnerability in curl <v7.88.0 can cause HSTS functionality to fail when multiple URLs are requested serially
Show more
| Reporter | Title | Published | Views | Family All 92 |
|---|---|---|---|---|
 | Information Disclosure | 18 Feb 202305:22 | – | veracode |
 | CVE-2023-23914 | 23 Feb 202320:15 | – | osv |
| HSTS ignored on multiple requests | 15 Feb 202308:00 | – | osv |
| curl vulnerabilities | 27 Feb 202312:34 | – | osv |
| OPENSUSE-SU-2024:12735-1 curl-7.88.1-1.1 on GA media | 15 Jun 202400:00 | – | osv |
| RHSA-2023:3354 Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.51 SP2 security update | 14 Sep 202400:03 | – | osv |
 | CVE-2023-23914 affecting package curl for versions less than 7.88.1-1 | 24 Mar 202323:55 | – | cbl_mariner |
| CVE-2023-23914 affecting package tensorflow for versions less than 2.16.1-1 | 17 Apr 202422:02 | – | cbl_mariner |
| CVE-2023-23914 affecting package rust for versions less than 1.72.0-2 | 11 Oct 202301:41 | – | cbl_mariner |
| CVE-2023-23914 affecting package mysql for versions less than 8.0.33-1 | 3 May 202316:24 | – | cbl_mariner |
10
Node
Node
Node
Node
Node
Node
OROR
[
{
"vendor": "n/a",
"product": "https://github.com/curl/curl",
"versions": [
{
"version": "Fixed in 7.88.0",
"status": "affected"
}
]
}
]| Source | Link |
|---|---|
| hackerone | www.hackerone.com/reports/1813864 |
| security | www.security.gentoo.org/glsa/202310-12 |
| security | www.security.netapp.com/advisory/ntap-20230309-0006/ |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo23 Feb 2023 20:15Current
8.8High risk
Vulners AI Score8.8
CVSS39.1
EPSS0.00179
SSVC