cURL and libcurl Vulnerability Affecting Cisco Products: October 2023

Cisco Security Advisory

On October 11, 2023, cURL released Version 8.4.0 of the cURL utility and the libcurl library. This release addressed two security vulnerabilities: 

  • CVE-2023-38545 – High Security Impact Rating (SIR)
  • CVE-2023-38546 – Low SIR

This advisory covers CVE-2023-38545 only. For more information about this vulnerability, see the cURL advisory.

This advisory is available at the following link:

Security Impact Rating: High

CVE: CVE-2023-38545