CVE-2023-23915
MEDIUMcurl 7.77.0-7.87.0 - Cleartext Transmission of Sensitive Information via HSTS Cache Overwrite
Title source: llmDescription
A cleartext transmission of sensitive information vulnerability exists in curl <v7.88.0 that could cause HSTS functionality to behave incorrectly when multiple URLs are requested in parallel. Using its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear-text HTTP step even when HTTP is provided in the URL. This HSTS mechanism would however surprisingly fail when multiple transfers are done in parallel as the HSTS cache file gets overwritten by the most recentlycompleted transfer. A later HTTP-only transfer to the earlier host name would then *not* get upgraded properly to HSTS.
References (3)
Core 3
Core References
Not Applicable
https://hackerone.com/reports/1826048
Third Party Advisory
https://security.netapp.com/advisory/ntap-20230309-0006/
Third Party Advisory vendor-advisory
https://security.gentoo.org/glsa/202310-12
Scores
CVSS v3
6.5
EPSS
0.0004
EPSS Percentile
11.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-319
Status
published
Products (9)
haxx/curl
7.77.0 - 7.88.0
netapp/active_iq_unified_manager
netapp/clustered_data_ontap
9.0
netapp/h300s_firmware
netapp/h410s_firmware
netapp/h500s_firmware
netapp/h700s_firmware
splunk/universal_forwarder
9.1.0
splunk/universal_forwarder
8.2.0 - 8.2.12
Published
Feb 23, 2023
Tracked Since
Feb 18, 2026