CVE-2024-6197 | libcURL up to 8.6.0/8.7.0/8.7.1/8.8.0 ASN1 Parser utf8asn1str free of memory not on the heap

Inserito da Angelo Barbosa | Lug 24, 2024 | CVE

A vulnerability, which was classified as problematic, was found in libcURL up to 8.6.0/8.7.0/8.7.1/8.8.0. This affects the function utf8asn1str of the component ASN1 Parser. The manipulation leads to free of memory not on the heap.

This vulnerability is uniquely identified as CVE-2024-6197. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-6197 | libcURL up to 8.6.0/8.7.0/8.7.1/8.8.0 ASN1 Parser utf8asn1str free of memory not on the heap

Post correlati

CVE-2024-1194 | Armcode AlienIP 2.41 Locate Host denial of service

CVE-2024-38879 | Siemens Omnivise T3000 Application Server Network Interface improper authentication (ssa-857368)

CVE-2024-38491 | Broadcom Symantec Privileged Access Management up to 3.4.6/4.1.7 information disclosure

CVE-2023-52361 | Huawei HarmonyOS 4.0.0 VerifiedBoot Module improper authentication