Svi
Pretraži prema proizvođaču
Pretraži prema CWE oznaci
O usluzi
Pretplate
Jezik
hr
en
CVE-2023-46219 - CERT CVE
CVE-2023-46219
ID
CVE-2023-46219
Sažetak
When saving HSTS data to an excessively long file name, curl could end up removing all contents, making subsequent requests using that file unaware of the HSTS status they should otherwise use.
Reference
https://curl.se/docs/CVE-2023-46219.html
https://hackerone.com/reports/2236133
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOGXU25FMMT2X6UUITQ7EZZYMJ42YWWD/
https://security.netapp.com/advisory/ntap-20240119-0007/
https://www.debian.org/security/2023/dsa-5587
https://curl.se/docs/CVE-2023-46219.html
https://hackerone.com/reports/2236133
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOGXU25FMMT2X6UUITQ7EZZYMJ42YWWD/
https://security.netapp.com/advisory/ntap-20240119-0007/
https://www.debian.org/security/2023/dsa-5587
CVSS
Base:
5.3
Impact:
1.4
Exploitability:
3.9
Pristup
Vektor
Složenost
Autentikacija
NETWORK
LOW
NONE
Impact
Povjerljivost
Cjelovitost
Dostupnost
NONE
LOW
NONE
CVSS vektor
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Zadnje važnije ažuriranje
13-02-2025 - 18:15
Objavljeno
12-12-2023 - 02:15
