all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CVE-2022-43552 (curl)

Add to bookmarks
Feb. 9, 2023, 8:15 p.m. |

National Vulnerability Database web.nvd.nist.gov

A use after free vulnerability exists in curl <7.87.0. Curl can be asked to *tunnel* virtually all protocols it supports through an HTTP proxy. HTTP proxies can (and often do) deny such tunnel operations. When getting denied to tunnel the specific protocols SMB or TELNET, curl would use a heap-allocated struct after it had been freed, in its transfer shutdown code path.

code curl cve free http operations path protocols proxies proxy shutdown smb telnet tunnel vulnerability

Visit resource

More from web.nvd.nist.gov / National Vulnerability Database

CVE-2023-45955 (lightstrip_firmware) 6 months ago | web.nvd.nist.gov
attackers cve denial of service issue +1
CVE-2023-40101 (android) 6 months ago | web.nvd.nist.gov
android check collapse cve +7
CVE-2023-21377 (android) 6 months ago | web.nvd.nist.gov
android bypass cve disclosure +8
CVE-2023-21380 (android) 6 months ago | web.nvd.nist.gov
android bluetooth buffer buffer overflow +9
CVE-2023-21382 (android) 6 months ago | web.nvd.nist.gov
access android check cve +11
CVE-2023-21381 (android) 6 months ago | web.nvd.nist.gov
android arbitrary code code code execution +10
CVE-2023-21385 (android) 6 months ago | web.nvd.nist.gov
android corruption cve disclosure +7
CVE-2023-21387 (android) 6 months ago | web.nvd.nist.gov
android backup bypass cve +11
CVE-2023-21389 (android) 6 months ago | web.nvd.nist.gov
android bypass check cve +10

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Cyber Security Culture – Communication and Content Specialist

@ H&M Group | Stockholm, Sweden
View on infosec-jobs.com

Container Hardening, Sr. (Remote | Top Secret)

@ Rackner | San Antonio, TX
View on infosec-jobs.com

GRC and Information Security Analyst

@ Intertek | United States
View on infosec-jobs.com

Information Security Officer

@ Sopra Steria | Bristol, United Kingdom
View on infosec-jobs.com

Casual Area Security Officer South Down Area

@ TSS | County Down, United Kingdom
View on infosec-jobs.com
View more jobs