A vulnerability, which was classified as problematic, was found in libcURL up to 8.6.0/8.7.0/8.7.1/8.8.0. This affects the function
utf8asn1str
of the component ASN1 Parser. The manipulation leads to free of memory not on the heap.
This vulnerability is uniquely identified as CVE-2024-6197. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.