CVE-2023-38545

🗓️ 18 Oct 2023 04:11:15Reported by hackeroneType

cve🔗 web.nvd.nist.gov📰️ 153 Media mentions👁 915 Views🌐 WEB

CVE-2023-38545: Heap buffer overflow in curl SOCKS5 handshak

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 199
Tenable Nessus	libcurl 7.69 < 8.4.0 Heap Buffer Overflow	11 Oct 202300:00	–	nessus
Tenable Nessus	Curl 7.69 < 8.4.0 Heap Buffer Overflow	11 Oct 202300:00	–	nessus
Tenable Nessus	FreeBSD : curl -- SOCKS5 heap buffer overflow (d6c19e8c-6806-11ee-9464-b42e991fc52e)	11 Oct 202300:00	–	nessus
Tenable Nessus	CentOS 9 : curl-7.76.1-28.el9	29 Feb 202400:00	–	nessus
Tenable Nessus	RHEL 6 / 7 / 8 / 9 : Satellite Client Async Security Update (Important) (RHSA-2024:2011)	24 Apr 202400:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP10 : curl (EulerOS-SA-2024-1079)	16 Jan 202400:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : curl (EulerOS-SA-2023-3267)	16 Jan 202400:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.9.0 : curl (EulerOS-SA-2024-1005)	16 Jan 202400:00	–	nessus
Tenable Nessus	TensorFlow < 2.14.1 Multiple Vulnerabilities	16 May 202400:00	–	nessus
Tenable Nessus	RHEL 9 : curl (RHSA-2023:5763)	17 Oct 202300:00	–	nessus

Nvd

Vulners

Node

haxx libcurlRange7.69.0–8.4.0

Node

fedoraproject fedoraMatch37

Node

netapp active_iq_unified_managerMatch-vmware_vsphere

netapp active_iq_unified_managerMatch-windows

netapp oncommand_insightMatch-

netapp oncommand_workflow_automationMatch-

Node

microsoft windows_10_1809Range<10.0.17763.5122

microsoft windows_10_21h2Range<10.0.19044.3693

microsoft windows_10_22h2Range<10.0.19045.3693

microsoft windows_11_21h2Range<10.0.22000.2600

microsoft windows_11_22h2Range<10.0.22621.2715

microsoft windows_11_23h2Range<10.0.22631.2715

microsoft windows_server_2019Range<10.0.17763.5122

microsoft windows_server_2022Range<10.0.20348.2113

[
  {
    "vendor": "curl",
    "product": "curl",
    "versions": [
      {
        "version": "8.4.0",
        "status": "affected",
        "lessThan": "8.4.0",
        "versionType": "semver"
      },
      {
        "version": "7.69.0",
        "status": "unaffected",
        "lessThan": "7.69.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
support	www.support.apple.com/kb/HT214036
curl	www.curl.se/docs/CVE-2023-38545.html
support	www.support.apple.com/kb/HT214058
seclists	www.seclists.org/fulldisclosure/2024/Jan/34
seclists	www.seclists.org/fulldisclosure/2024/Jan/38
support	www.support.apple.com/kb/HT214057
forum	www.forum.vmssoftware.com/viewtopic.php
secpod	www.secpod.com/blog/high-severity-heap-buffer-overflow-vulnerability/
security	www.security.netapp.com/advisory/ntap-20231027-0009/
lists	www.lists.fedoraproject.org/archives/list/[email protected]/message/OGMXNRNSJ4ETDK6FRNU3J7SABXPWCHSQ/

Parameter	Position	Path	Description	CWE
host name	query param	http://localhost:8000	Exploited URL that causes heap overflow due to long host name being passed.	CWE-787

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

18 Oct 2023 04:15Current

9.4High risk

Vulners AI Score9.4

CVSS39.8

EPSS0.18014

SSVC

CWE-787