Cookie Injection Vulnerability in libcurl by cURL
CVE-2023-38546

3.7LOW

Key Information:

Vendor: Curl
Status: Curl
Vendor: CVE Published:; 18 October 2023

What is CVE-2023-38546?

A vulnerability exists in the libcurl library that enables attackers to inject arbitrary cookies into applications using the library. The issue arises when an application duplicates a handle using the curl_easy_duphandle function. If cookies are enabled and the original handle does not source cookies from a disk file, the cloned handle can erroneously reference a non-existent or improperly named file, such as 'none'. If a file by this name exists and is readable in the application's current working directory, it can lead to the inadvertent loading of sensitive cookies, potentially compromising user data and security.

Affected Version(s)

curl 8.4.0

curl 7.9.1

References

https://curl.se/docs/CVE-2023-38546.html

https://lists.fedoraproject.org/archives/list/package-ann...

https://support.apple.com/kb/HT214036

CVSS V3.1

Score:

3.7

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 18, 2023
Vulnerability Reserved
Jul 20, 2023

Curl

What is CVE-2023-38546?

Affected Version(s)

References

CVSS V3.1

Timeline