CVE-2023-46219 | cURL up to 8.4.0 HSTS File Name lib/fopen.c missing encryption

Posted by Angelo Barbosa | Dec 6, 2023 | CVE

A vulnerability, which was classified as problematic, was found in cURL up to 8.4.0. This affects an unknown part in the library lib/fopen.c of the component HSTS File Name Handler. The manipulation leads to missing encryption of sensitive data.

This vulnerability is uniquely identified as CVE-2023-46219. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-46219 | cURL up to 8.4.0 HSTS File Name lib/fopen.c missing encryption

Related Posts

CVE-2024-0102 | NVIDIA CUDA Toolkit up to 12.5U1 out-of-bounds

CVE-2023-40430 | Apple macOS Sandbox access control

CVE-2024-7004 | Google Chrome up to 126.0.6478.182 Safe Browsing Privilege Escalation

CVE-2023-52195 | Posts to Page Kerry James Plugin up to 1.7 on WordPress cross site scripting