Search

Find a vulnerability

Search criteria

    6 vulnerabilities found for brocade_fabric_operating_system by netapp

    CVE-2024-6119 (GCVE-0-2024-6119)

    Vulnerability from nvd – Published: 2024-09-03 15:58 – Updated: 2026-05-12 11:39
    VLAI
    Title
    Possible denial of service in X.509 name checks
    Summary
    Issue summary: Applications performing certificate name checks (e.g., TLS clients checking server certificates) may attempt to read an invalid memory address resulting in abnormal termination of the application process. Impact summary: Abnormal termination of an application can a cause a denial of service. Applications performing certificate name checks (e.g., TLS clients checking server certificates) may attempt to read an invalid memory address when comparing the expected name with an `otherName` subject alternative name of an X.509 certificate. This may result in an exception that terminates the application program. Note that basic certificate chain validation (signatures, dates, ...) is not affected, the denial of service can occur only when the application also specifies an expected DNS name, Email address or IP address. TLS servers rarely solicit client certificates, and even when they do, they generally don't perform a name check against a reference identifier (expected identity), but rather extract the presented identity after checking the certificate chain. So TLS servers are generally not affected and the severity of the issue is Moderate. The FIPS modules in 3.3, 3.2, 3.1 and 3.0 are not affected by this issue.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion')
    Assigner
    Impacted products
    Vendor Product Version
    OpenSSL OpenSSL Affected: 3.3.0 , < 3.3.2 (semver)
    Affected: 3.2.0 , < 3.2.3 (semver)
    Affected: 3.1.0 , < 3.1.7 (semver)
    Affected: 3.0.0 , < 3.0.15 (semver)
    Create a notification for this product.
    openssl openssl Affected: 3.3.0 , < 3.3.2 (custom)
    Affected: 3.2.0 , < 3.2.3 (custom)
    Affected: 3.1.0 , < 3.1.7 (custom)
    Affected: 3.0.0 , < 3.0.15 (custom)
        cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Siemens RUGGEDCOM RST2428P Affected: 0 , < V3.1 (custom)
    Create a notification for this product.
    Siemens SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 family Unaffected: 0 , < * (custom)
    Create a notification for this product.
    Siemens SCALANCE XCM-/XRM-/XCH-/XRH-300 family Affected: 0 , < V3.1 (custom)
    Create a notification for this product.
    Siemens SIMATIC S7-1500 CPU 1518-4 PN/DP MFP Affected: V3.1.5 , < * (custom)
    Create a notification for this product.
    Siemens SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP Affected: V3.1.5 , < * (custom)
    Create a notification for this product.
    Siemens SIPLUS S7-1500 CPU 1518-4 PN/DP MFP Affected: V3.1.5 , < * (custom)
    Create a notification for this product.
    Date Public
    2024-09-03 14:00
    Credits
    David Benjamin (Google) Viktor Dukhovni
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-09-12T16:03:01.704Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "url": "http://www.openwall.com/lists/oss-security/2024/09/03/4"
              },
              {
                "url": "https://lists.freebsd.org/archives/freebsd-security/2024-September/000303.html"
              },
              {
                "url": "https://security.netapp.com/advisory/ntap-20240912-0001/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "openssl",
                "vendor": "openssl",
                "versions": [
                  {
                    "lessThan": "3.3.2",
                    "status": "affected",
                    "version": "3.3.0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "3.2.3",
                    "status": "affected",
                    "version": "3.2.0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "3.1.7",
                    "status": "affected",
                    "version": "3.1.0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "3.0.15",
                    "status": "affected",
                    "version": "3.0.0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "NONE",
                  "baseScore": 7.5,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-6119",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-03T20:20:39.935362Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-03T20:25:47.056Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM RST2428P",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V3.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 family",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "unaffected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SCALANCE XCM-/XRM-/XCH-/XRH-300 family",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V3.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIPLUS S7-1500 CPU 1518-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-12T11:39:25.102Z",
              "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
              "shortName": "siemens-SADP"
            },
            "references": [
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-769027.html"
              },
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-082556.html"
              },
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-613116.html"
              }
            ],
            "x_adpType": "supplier"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "OpenSSL",
              "vendor": "OpenSSL",
              "versions": [
                {
                  "lessThan": "3.3.2",
                  "status": "affected",
                  "version": "3.3.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "3.2.3",
                  "status": "affected",
                  "version": "3.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "3.1.7",
                  "status": "affected",
                  "version": "3.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "3.0.15",
                  "status": "affected",
                  "version": "3.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "David Benjamin (Google)"
            },
            {
              "lang": "en",
              "type": "remediation developer",
              "value": "Viktor Dukhovni"
            }
          ],
          "datePublic": "2024-09-03T14:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Issue summary: Applications performing certificate name checks (e.g., TLS\u003cbr\u003eclients checking server certificates) may attempt to read an invalid memory\u003cbr\u003eaddress resulting in abnormal termination of the application process.\u003cbr\u003e\u003cbr\u003eImpact summary: Abnormal termination of an application can a cause a denial of\u003cbr\u003eservice.\u003cbr\u003e\u003cbr\u003eApplications performing certificate name checks (e.g., TLS clients checking\u003cbr\u003eserver certificates) may attempt to read an invalid memory address when\u003cbr\u003ecomparing the expected name with an `otherName` subject alternative name of an\u003cbr\u003eX.509 certificate. This may result in an exception that terminates the\u003cbr\u003eapplication program.\u003cbr\u003e\u003cbr\u003eNote that basic certificate chain validation (signatures, dates, ...) is not\u003cbr\u003eaffected, the denial of service can occur only when the application also\u003cbr\u003especifies an expected DNS name, Email address or IP address.\u003cbr\u003e\u003cbr\u003eTLS servers rarely solicit client certificates, and even when they do, they\u003cbr\u003egenerally don\u0027t perform a name check against a reference identifier (expected\u003cbr\u003eidentity), but rather extract the presented identity after checking the\u003cbr\u003ecertificate chain.  So TLS servers are generally not affected and the severity\u003cbr\u003eof the issue is Moderate.\u003cbr\u003e\u003cbr\u003eThe FIPS modules in 3.3, 3.2, 3.1 and 3.0 are not affected by this issue."
                }
              ],
              "value": "Issue summary: Applications performing certificate name checks (e.g., TLS\nclients checking server certificates) may attempt to read an invalid memory\naddress resulting in abnormal termination of the application process.\n\nImpact summary: Abnormal termination of an application can a cause a denial of\nservice.\n\nApplications performing certificate name checks (e.g., TLS clients checking\nserver certificates) may attempt to read an invalid memory address when\ncomparing the expected name with an `otherName` subject alternative name of an\nX.509 certificate. This may result in an exception that terminates the\napplication program.\n\nNote that basic certificate chain validation (signatures, dates, ...) is not\naffected, the denial of service can occur only when the application also\nspecifies an expected DNS name, Email address or IP address.\n\nTLS servers rarely solicit client certificates, and even when they do, they\ngenerally don\u0027t perform a name check against a reference identifier (expected\nidentity), but rather extract the presented identity after checking the\ncertificate chain.  So TLS servers are generally not affected and the severity\nof the issue is Moderate.\n\nThe FIPS modules in 3.3, 3.2, 3.1 and 3.0 are not affected by this issue."
            }
          ],
          "metrics": [
            {
              "format": "other",
              "other": {
                "content": {
                  "text": "Moderate"
                },
                "type": "https://www.openssl.org/policies/secpolicy.html"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-843",
                  "description": "CWE-843 Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-03T15:58:06.970Z",
            "orgId": "3a12439a-ef3a-4c79-92e6-6081a721f1e5",
            "shortName": "openssl"
          },
          "references": [
            {
              "name": "OpenSSL Advisory",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://openssl-library.org/news/secadv/20240903.txt"
            },
            {
              "name": "3.3.2 git commit",
              "tags": [
                "patch"
              ],
              "url": "https://github.com/openssl/openssl/commit/7dfcee2cd2a63b2c64b9b4b0850be64cb695b0a0"
            },
            {
              "name": "3.2.3 git commit",
              "tags": [
                "patch"
              ],
              "url": "https://github.com/openssl/openssl/commit/05f360d9e849a1b277db628f1f13083a7f8dd04f"
            },
            {
              "name": "3.1.7 git commit",
              "tags": [
                "patch"
              ],
              "url": "https://github.com/openssl/openssl/commit/621f3729831b05ee828a3203eddb621d014ff2b2"
            },
            {
              "name": "3.0.15 git commit",
              "tags": [
                "patch"
              ],
              "url": "https://github.com/openssl/openssl/commit/06d1dc3fa96a2ba5a3e22735a033012aadc9f0d6"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Possible denial of service in X.509 name checks",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "3a12439a-ef3a-4c79-92e6-6081a721f1e5",
        "assignerShortName": "openssl",
        "cveId": "CVE-2024-6119",
        "datePublished": "2024-09-03T15:58:06.970Z",
        "dateReserved": "2024-06-18T09:24:11.739Z",
        "dateUpdated": "2026-05-12T11:39:25.102Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-2398 (GCVE-0-2024-2398)

    Vulnerability from nvd – Published: 2024-03-27 07:55 – Updated: 2025-02-13 17:40
    VLAI
    Title
    HTTP/2 push headers memory-leak
    Summary
    When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the maximum allowed limit (1000), libcurl aborts the server push. When aborting, libcurl inadvertently does not free all the previously allocated headers and instead leaks the memory. Further, this error condition fails silently and is therefore not easily detected by an application.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Impacted products
    Vendor Product Version
    curl curl Affected: 8.6.0 , ≤ 8.6.0 (semver)
    Affected: 8.5.0 , ≤ 8.5.0 (semver)
    Affected: 8.4.0 , ≤ 8.4.0 (semver)
    Affected: 8.3.0 , ≤ 8.3.0 (semver)
    Affected: 8.2.1 , ≤ 8.2.1 (semver)
    Affected: 8.2.0 , ≤ 8.2.0 (semver)
    Affected: 8.1.2 , ≤ 8.1.2 (semver)
    Affected: 8.1.1 , ≤ 8.1.1 (semver)
    Affected: 8.1.0 , ≤ 8.1.0 (semver)
    Affected: 8.0.1 , ≤ 8.0.1 (semver)
    Affected: 8.0.0 , ≤ 8.0.0 (semver)
    Affected: 7.88.1 , ≤ 7.88.1 (semver)
    Affected: 7.88.0 , ≤ 7.88.0 (semver)
    Affected: 7.87.0 , ≤ 7.87.0 (semver)
    Affected: 7.86.0 , ≤ 7.86.0 (semver)
    Affected: 7.85.0 , ≤ 7.85.0 (semver)
    Affected: 7.84.0 , ≤ 7.84.0 (semver)
    Affected: 7.83.1 , ≤ 7.83.1 (semver)
    Affected: 7.83.0 , ≤ 7.83.0 (semver)
    Affected: 7.82.0 , ≤ 7.82.0 (semver)
    Affected: 7.81.0 , ≤ 7.81.0 (semver)
    Affected: 7.80.0 , ≤ 7.80.0 (semver)
    Affected: 7.79.1 , ≤ 7.79.1 (semver)
    Affected: 7.79.0 , ≤ 7.79.0 (semver)
    Affected: 7.78.0 , ≤ 7.78.0 (semver)
    Affected: 7.77.0 , ≤ 7.77.0 (semver)
    Affected: 7.76.1 , ≤ 7.76.1 (semver)
    Affected: 7.76.0 , ≤ 7.76.0 (semver)
    Affected: 7.75.0 , ≤ 7.75.0 (semver)
    Affected: 7.74.0 , ≤ 7.74.0 (semver)
    Affected: 7.73.0 , ≤ 7.73.0 (semver)
    Affected: 7.72.0 , ≤ 7.72.0 (semver)
    Affected: 7.71.1 , ≤ 7.71.1 (semver)
    Affected: 7.71.0 , ≤ 7.71.0 (semver)
    Affected: 7.70.0 , ≤ 7.70.0 (semver)
    Affected: 7.69.1 , ≤ 7.69.1 (semver)
    Affected: 7.69.0 , ≤ 7.69.0 (semver)
    Affected: 7.68.0 , ≤ 7.68.0 (semver)
    Affected: 7.67.0 , ≤ 7.67.0 (semver)
    Affected: 7.66.0 , ≤ 7.66.0 (semver)
    Affected: 7.65.3 , ≤ 7.65.3 (semver)
    Affected: 7.65.2 , ≤ 7.65.2 (semver)
    Affected: 7.65.1 , ≤ 7.65.1 (semver)
    Affected: 7.65.0 , ≤ 7.65.0 (semver)
    Affected: 7.64.1 , ≤ 7.64.1 (semver)
    Affected: 7.64.0 , ≤ 7.64.0 (semver)
    Affected: 7.63.0 , ≤ 7.63.0 (semver)
    Affected: 7.62.0 , ≤ 7.62.0 (semver)
    Affected: 7.61.1 , ≤ 7.61.1 (semver)
    Affected: 7.61.0 , ≤ 7.61.0 (semver)
    Affected: 7.60.0 , ≤ 7.60.0 (semver)
    Affected: 7.59.0 , ≤ 7.59.0 (semver)
    Affected: 7.58.0 , ≤ 7.58.0 (semver)
    Affected: 7.57.0 , ≤ 7.57.0 (semver)
    Affected: 7.56.1 , ≤ 7.56.1 (semver)
    Affected: 7.56.0 , ≤ 7.56.0 (semver)
    Affected: 7.55.1 , ≤ 7.55.1 (semver)
    Affected: 7.55.0 , ≤ 7.55.0 (semver)
    Affected: 7.54.1 , ≤ 7.54.1 (semver)
    Affected: 7.54.0 , ≤ 7.54.0 (semver)
    Affected: 7.53.1 , ≤ 7.53.1 (semver)
    Affected: 7.53.0 , ≤ 7.53.0 (semver)
    Affected: 7.52.1 , ≤ 7.52.1 (semver)
    Affected: 7.52.0 , ≤ 7.52.0 (semver)
    Affected: 7.51.0 , ≤ 7.51.0 (semver)
    Affected: 7.50.3 , ≤ 7.50.3 (semver)
    Affected: 7.50.2 , ≤ 7.50.2 (semver)
    Affected: 7.50.1 , ≤ 7.50.1 (semver)
    Affected: 7.50.0 , ≤ 7.50.0 (semver)
    Affected: 7.49.1 , ≤ 7.49.1 (semver)
    Affected: 7.49.0 , ≤ 7.49.0 (semver)
    Affected: 7.48.0 , ≤ 7.48.0 (semver)
    Affected: 7.47.1 , ≤ 7.47.1 (semver)
    Affected: 7.47.0 , ≤ 7.47.0 (semver)
    Affected: 7.46.0 , ≤ 7.46.0 (semver)
    Affected: 7.45.0 , ≤ 7.45.0 (semver)
    Affected: 7.44.0 , ≤ 7.44.0 (semver)
    Create a notification for this product.
    curl curl Affected: 7.44.0 , ≤ 8.6.0 (custom)
        cpe:2.3:a:curl:curl:7.4:*:*:*:*:*:*:*
    Create a notification for this product.
    Credits
    w0x42 on hackerone Stefan Eissing
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:curl:curl:7.4:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "curl",
                "vendor": "curl",
                "versions": [
                  {
                    "lessThanOrEqual": "8.6.0",
                    "status": "affected",
                    "version": "7.44.0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "LOW",
                  "baseScore": 8.6,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "LOW",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-2398",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-04-26T18:57:39.256472Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-06-04T17:30:40.286Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T19:11:53.566Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "json",
                "tags": [
                  "x_transferred"
                ],
                "url": "https://curl.se/docs/CVE-2024-2398.json"
              },
              {
                "name": "www",
                "tags": [
                  "x_transferred"
                ],
                "url": "https://curl.se/docs/CVE-2024-2398.html"
              },
              {
                "name": "issue",
                "tags": [
                  "x_transferred"
                ],
                "url": "https://hackerone.com/reports/2402845"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GMD6UYKCCRCYETWQZUJ65ZRFULT6SHLI/"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2D44YLAUFJU6BZ4XFG2FYV7SBKXB5IZ6/"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www.openwall.com/lists/oss-security/2024/03/27/3"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://security.netapp.com/advisory/ntap-20240503-0009/"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://support.apple.com/kb/HT214119"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://support.apple.com/kb/HT214118"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://support.apple.com/kb/HT214120"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://seclists.org/fulldisclosure/2024/Jul/20"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://seclists.org/fulldisclosure/2024/Jul/18"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://seclists.org/fulldisclosure/2024/Jul/19"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "curl",
              "vendor": "curl",
              "versions": [
                {
                  "lessThanOrEqual": "8.6.0",
                  "status": "affected",
                  "version": "8.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "8.5.0",
                  "status": "affected",
                  "version": "8.5.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "8.4.0",
                  "status": "affected",
                  "version": "8.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "8.3.0",
                  "status": "affected",
                  "version": "8.3.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "8.2.1",
                  "status": "affected",
                  "version": "8.2.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "8.2.0",
                  "status": "affected",
                  "version": "8.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "8.1.2",
                  "status": "affected",
                  "version": "8.1.2",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "8.1.1",
                  "status": "affected",
                  "version": "8.1.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "8.1.0",
                  "status": "affected",
                  "version": "8.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "8.0.1",
                  "status": "affected",
                  "version": "8.0.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "8.0.0",
                  "status": "affected",
                  "version": "8.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.88.1",
                  "status": "affected",
                  "version": "7.88.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.88.0",
                  "status": "affected",
                  "version": "7.88.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.87.0",
                  "status": "affected",
                  "version": "7.87.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.86.0",
                  "status": "affected",
                  "version": "7.86.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.85.0",
                  "status": "affected",
                  "version": "7.85.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.84.0",
                  "status": "affected",
                  "version": "7.84.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.83.1",
                  "status": "affected",
                  "version": "7.83.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.83.0",
                  "status": "affected",
                  "version": "7.83.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.82.0",
                  "status": "affected",
                  "version": "7.82.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.81.0",
                  "status": "affected",
                  "version": "7.81.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.80.0",
                  "status": "affected",
                  "version": "7.80.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.79.1",
                  "status": "affected",
                  "version": "7.79.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.79.0",
                  "status": "affected",
                  "version": "7.79.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.78.0",
                  "status": "affected",
                  "version": "7.78.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.77.0",
                  "status": "affected",
                  "version": "7.77.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.76.1",
                  "status": "affected",
                  "version": "7.76.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.76.0",
                  "status": "affected",
                  "version": "7.76.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.75.0",
                  "status": "affected",
                  "version": "7.75.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.74.0",
                  "status": "affected",
                  "version": "7.74.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.73.0",
                  "status": "affected",
                  "version": "7.73.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.72.0",
                  "status": "affected",
                  "version": "7.72.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.71.1",
                  "status": "affected",
                  "version": "7.71.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.71.0",
                  "status": "affected",
                  "version": "7.71.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.70.0",
                  "status": "affected",
                  "version": "7.70.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.69.1",
                  "status": "affected",
                  "version": "7.69.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.69.0",
                  "status": "affected",
                  "version": "7.69.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.68.0",
                  "status": "affected",
                  "version": "7.68.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.67.0",
                  "status": "affected",
                  "version": "7.67.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.66.0",
                  "status": "affected",
                  "version": "7.66.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.65.3",
                  "status": "affected",
                  "version": "7.65.3",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.65.2",
                  "status": "affected",
                  "version": "7.65.2",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.65.1",
                  "status": "affected",
                  "version": "7.65.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.65.0",
                  "status": "affected",
                  "version": "7.65.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.64.1",
                  "status": "affected",
                  "version": "7.64.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.64.0",
                  "status": "affected",
                  "version": "7.64.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.63.0",
                  "status": "affected",
                  "version": "7.63.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.62.0",
                  "status": "affected",
                  "version": "7.62.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.61.1",
                  "status": "affected",
                  "version": "7.61.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.61.0",
                  "status": "affected",
                  "version": "7.61.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.60.0",
                  "status": "affected",
                  "version": "7.60.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.59.0",
                  "status": "affected",
                  "version": "7.59.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.58.0",
                  "status": "affected",
                  "version": "7.58.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.57.0",
                  "status": "affected",
                  "version": "7.57.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.56.1",
                  "status": "affected",
                  "version": "7.56.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.56.0",
                  "status": "affected",
                  "version": "7.56.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.55.1",
                  "status": "affected",
                  "version": "7.55.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.55.0",
                  "status": "affected",
                  "version": "7.55.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.54.1",
                  "status": "affected",
                  "version": "7.54.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.54.0",
                  "status": "affected",
                  "version": "7.54.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.53.1",
                  "status": "affected",
                  "version": "7.53.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.53.0",
                  "status": "affected",
                  "version": "7.53.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.52.1",
                  "status": "affected",
                  "version": "7.52.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.52.0",
                  "status": "affected",
                  "version": "7.52.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.51.0",
                  "status": "affected",
                  "version": "7.51.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.50.3",
                  "status": "affected",
                  "version": "7.50.3",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.50.2",
                  "status": "affected",
                  "version": "7.50.2",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.50.1",
                  "status": "affected",
                  "version": "7.50.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.50.0",
                  "status": "affected",
                  "version": "7.50.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.49.1",
                  "status": "affected",
                  "version": "7.49.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.49.0",
                  "status": "affected",
                  "version": "7.49.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.48.0",
                  "status": "affected",
                  "version": "7.48.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.47.1",
                  "status": "affected",
                  "version": "7.47.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.47.0",
                  "status": "affected",
                  "version": "7.47.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.46.0",
                  "status": "affected",
                  "version": "7.46.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.45.0",
                  "status": "affected",
                  "version": "7.45.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.44.0",
                  "status": "affected",
                  "version": "7.44.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "w0x42 on hackerone"
            },
            {
              "lang": "en",
              "type": "remediation developer",
              "value": "Stefan Eissing"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the maximum allowed limit (1000), libcurl aborts the server push. When aborting, libcurl inadvertently does not free all the previously allocated headers and instead leaks the memory.  Further, this error condition fails silently and is therefore not easily detected by an application."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "CWE-772 Missing Release of Resource after Effective Lifetime",
                  "lang": "en"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-07-29T22:06:29.645Z",
            "orgId": "2499f714-1537-4658-8207-48ae4bb9eae9",
            "shortName": "curl"
          },
          "references": [
            {
              "name": "json",
              "url": "https://curl.se/docs/CVE-2024-2398.json"
            },
            {
              "name": "www",
              "url": "https://curl.se/docs/CVE-2024-2398.html"
            },
            {
              "name": "issue",
              "url": "https://hackerone.com/reports/2402845"
            },
            {
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GMD6UYKCCRCYETWQZUJ65ZRFULT6SHLI/"
            },
            {
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2D44YLAUFJU6BZ4XFG2FYV7SBKXB5IZ6/"
            },
            {
              "url": "http://www.openwall.com/lists/oss-security/2024/03/27/3"
            },
            {
              "url": "https://security.netapp.com/advisory/ntap-20240503-0009/"
            },
            {
              "url": "https://support.apple.com/kb/HT214119"
            },
            {
              "url": "https://support.apple.com/kb/HT214118"
            },
            {
              "url": "https://support.apple.com/kb/HT214120"
            },
            {
              "url": "http://seclists.org/fulldisclosure/2024/Jul/20"
            },
            {
              "url": "http://seclists.org/fulldisclosure/2024/Jul/18"
            },
            {
              "url": "http://seclists.org/fulldisclosure/2024/Jul/19"
            }
          ],
          "title": "HTTP/2 push headers memory-leak"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2499f714-1537-4658-8207-48ae4bb9eae9",
        "assignerShortName": "curl",
        "cveId": "CVE-2024-2398",
        "datePublished": "2024-03-27T07:55:48.524Z",
        "dateReserved": "2024-03-12T10:59:22.660Z",
        "dateUpdated": "2025-02-13T17:40:07.893Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-28531 (GCVE-0-2023-28531)

    Vulnerability from nvd – Published: 2023-03-17 00:00 – Updated: 2026-05-28 18:15
    VLAI
    Summary
    ssh-add in OpenSSH before 9.3 adds smartcard keys to ssh-agent without the intended per-hop destination constraints. The earliest affected version is 8.9.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • n/a
    • CWE-284 - Improper Access Control
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2025-11-04T18:14:27.987Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.openwall.com/lists/oss-security/2023/03/15/8"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://security.netapp.com/advisory/ntap-20230413-0008/"
              },
              {
                "name": "GLSA-202307-01",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://security.gentoo.org/glsa/202307-01"
              },
              {
                "name": "DSA-5586",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://www.debian.org/security/2023/dsa-5586"
              },
              {
                "name": "FEDORA-2024-2aac54ebb7",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AN2UDTXEUSKFIOIYMV6JNI5VSBMYZOFT/"
              },
              {
                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AN2UDTXEUSKFIOIYMV6JNI5VSBMYZOFT/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIPLUS S7-1500 CPU 1518-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-12T10:52:17.854Z",
              "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
              "shortName": "siemens-SADP"
            },
            "references": [
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-082556.html"
              }
            ],
            "x_adpType": "supplier"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-28531",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-11T20:20:13.493424Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-284",
                    "description": "CWE-284 Improper Access Control",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-28T18:15:12.867Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "ssh-add in OpenSSH before 9.3 adds smartcard keys to ssh-agent without the intended per-hop destination constraints. The earliest affected version is 8.9."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-02-12T03:06:25.997Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "url": "https://www.openwall.com/lists/oss-security/2023/03/15/8"
            },
            {
              "url": "https://security.netapp.com/advisory/ntap-20230413-0008/"
            },
            {
              "name": "GLSA-202307-01",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://security.gentoo.org/glsa/202307-01"
            },
            {
              "name": "DSA-5586",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.debian.org/security/2023/dsa-5586"
            },
            {
              "name": "FEDORA-2024-2aac54ebb7",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AN2UDTXEUSKFIOIYMV6JNI5VSBMYZOFT/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2023-28531",
        "datePublished": "2023-03-17T00:00:00.000Z",
        "dateReserved": "2023-03-17T00:00:00.000Z",
        "dateUpdated": "2026-05-28T18:15:12.867Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-6119 (GCVE-0-2024-6119)

    Vulnerability from cvelistv5 – Published: 2024-09-03 15:58 – Updated: 2026-05-12 11:39
    VLAI
    Title
    Possible denial of service in X.509 name checks
    Summary
    Issue summary: Applications performing certificate name checks (e.g., TLS clients checking server certificates) may attempt to read an invalid memory address resulting in abnormal termination of the application process. Impact summary: Abnormal termination of an application can a cause a denial of service. Applications performing certificate name checks (e.g., TLS clients checking server certificates) may attempt to read an invalid memory address when comparing the expected name with an `otherName` subject alternative name of an X.509 certificate. This may result in an exception that terminates the application program. Note that basic certificate chain validation (signatures, dates, ...) is not affected, the denial of service can occur only when the application also specifies an expected DNS name, Email address or IP address. TLS servers rarely solicit client certificates, and even when they do, they generally don't perform a name check against a reference identifier (expected identity), but rather extract the presented identity after checking the certificate chain. So TLS servers are generally not affected and the severity of the issue is Moderate. The FIPS modules in 3.3, 3.2, 3.1 and 3.0 are not affected by this issue.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion')
    Assigner
    Impacted products
    Vendor Product Version
    OpenSSL OpenSSL Affected: 3.3.0 , < 3.3.2 (semver)
    Affected: 3.2.0 , < 3.2.3 (semver)
    Affected: 3.1.0 , < 3.1.7 (semver)
    Affected: 3.0.0 , < 3.0.15 (semver)
    Create a notification for this product.
    openssl openssl Affected: 3.3.0 , < 3.3.2 (custom)
    Affected: 3.2.0 , < 3.2.3 (custom)
    Affected: 3.1.0 , < 3.1.7 (custom)
    Affected: 3.0.0 , < 3.0.15 (custom)
        cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Siemens RUGGEDCOM RST2428P Affected: 0 , < V3.1 (custom)
    Create a notification for this product.
    Siemens SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 family Unaffected: 0 , < * (custom)
    Create a notification for this product.
    Siemens SCALANCE XCM-/XRM-/XCH-/XRH-300 family Affected: 0 , < V3.1 (custom)
    Create a notification for this product.
    Siemens SIMATIC S7-1500 CPU 1518-4 PN/DP MFP Affected: V3.1.5 , < * (custom)
    Create a notification for this product.
    Siemens SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP Affected: V3.1.5 , < * (custom)
    Create a notification for this product.
    Siemens SIPLUS S7-1500 CPU 1518-4 PN/DP MFP Affected: V3.1.5 , < * (custom)
    Create a notification for this product.
    Date Public
    2024-09-03 14:00
    Credits
    David Benjamin (Google) Viktor Dukhovni
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-09-12T16:03:01.704Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "url": "http://www.openwall.com/lists/oss-security/2024/09/03/4"
              },
              {
                "url": "https://lists.freebsd.org/archives/freebsd-security/2024-September/000303.html"
              },
              {
                "url": "https://security.netapp.com/advisory/ntap-20240912-0001/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "openssl",
                "vendor": "openssl",
                "versions": [
                  {
                    "lessThan": "3.3.2",
                    "status": "affected",
                    "version": "3.3.0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "3.2.3",
                    "status": "affected",
                    "version": "3.2.0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "3.1.7",
                    "status": "affected",
                    "version": "3.1.0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "3.0.15",
                    "status": "affected",
                    "version": "3.0.0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "NONE",
                  "baseScore": 7.5,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-6119",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-03T20:20:39.935362Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-03T20:25:47.056Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM RST2428P",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V3.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 family",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "unaffected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SCALANCE XCM-/XRM-/XCH-/XRH-300 family",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "V3.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIPLUS S7-1500 CPU 1518-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-12T11:39:25.102Z",
              "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
              "shortName": "siemens-SADP"
            },
            "references": [
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-769027.html"
              },
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-082556.html"
              },
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-613116.html"
              }
            ],
            "x_adpType": "supplier"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "OpenSSL",
              "vendor": "OpenSSL",
              "versions": [
                {
                  "lessThan": "3.3.2",
                  "status": "affected",
                  "version": "3.3.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "3.2.3",
                  "status": "affected",
                  "version": "3.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "3.1.7",
                  "status": "affected",
                  "version": "3.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "3.0.15",
                  "status": "affected",
                  "version": "3.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "David Benjamin (Google)"
            },
            {
              "lang": "en",
              "type": "remediation developer",
              "value": "Viktor Dukhovni"
            }
          ],
          "datePublic": "2024-09-03T14:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Issue summary: Applications performing certificate name checks (e.g., TLS\u003cbr\u003eclients checking server certificates) may attempt to read an invalid memory\u003cbr\u003eaddress resulting in abnormal termination of the application process.\u003cbr\u003e\u003cbr\u003eImpact summary: Abnormal termination of an application can a cause a denial of\u003cbr\u003eservice.\u003cbr\u003e\u003cbr\u003eApplications performing certificate name checks (e.g., TLS clients checking\u003cbr\u003eserver certificates) may attempt to read an invalid memory address when\u003cbr\u003ecomparing the expected name with an `otherName` subject alternative name of an\u003cbr\u003eX.509 certificate. This may result in an exception that terminates the\u003cbr\u003eapplication program.\u003cbr\u003e\u003cbr\u003eNote that basic certificate chain validation (signatures, dates, ...) is not\u003cbr\u003eaffected, the denial of service can occur only when the application also\u003cbr\u003especifies an expected DNS name, Email address or IP address.\u003cbr\u003e\u003cbr\u003eTLS servers rarely solicit client certificates, and even when they do, they\u003cbr\u003egenerally don\u0027t perform a name check against a reference identifier (expected\u003cbr\u003eidentity), but rather extract the presented identity after checking the\u003cbr\u003ecertificate chain.  So TLS servers are generally not affected and the severity\u003cbr\u003eof the issue is Moderate.\u003cbr\u003e\u003cbr\u003eThe FIPS modules in 3.3, 3.2, 3.1 and 3.0 are not affected by this issue."
                }
              ],
              "value": "Issue summary: Applications performing certificate name checks (e.g., TLS\nclients checking server certificates) may attempt to read an invalid memory\naddress resulting in abnormal termination of the application process.\n\nImpact summary: Abnormal termination of an application can a cause a denial of\nservice.\n\nApplications performing certificate name checks (e.g., TLS clients checking\nserver certificates) may attempt to read an invalid memory address when\ncomparing the expected name with an `otherName` subject alternative name of an\nX.509 certificate. This may result in an exception that terminates the\napplication program.\n\nNote that basic certificate chain validation (signatures, dates, ...) is not\naffected, the denial of service can occur only when the application also\nspecifies an expected DNS name, Email address or IP address.\n\nTLS servers rarely solicit client certificates, and even when they do, they\ngenerally don\u0027t perform a name check against a reference identifier (expected\nidentity), but rather extract the presented identity after checking the\ncertificate chain.  So TLS servers are generally not affected and the severity\nof the issue is Moderate.\n\nThe FIPS modules in 3.3, 3.2, 3.1 and 3.0 are not affected by this issue."
            }
          ],
          "metrics": [
            {
              "format": "other",
              "other": {
                "content": {
                  "text": "Moderate"
                },
                "type": "https://www.openssl.org/policies/secpolicy.html"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-843",
                  "description": "CWE-843 Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-03T15:58:06.970Z",
            "orgId": "3a12439a-ef3a-4c79-92e6-6081a721f1e5",
            "shortName": "openssl"
          },
          "references": [
            {
              "name": "OpenSSL Advisory",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://openssl-library.org/news/secadv/20240903.txt"
            },
            {
              "name": "3.3.2 git commit",
              "tags": [
                "patch"
              ],
              "url": "https://github.com/openssl/openssl/commit/7dfcee2cd2a63b2c64b9b4b0850be64cb695b0a0"
            },
            {
              "name": "3.2.3 git commit",
              "tags": [
                "patch"
              ],
              "url": "https://github.com/openssl/openssl/commit/05f360d9e849a1b277db628f1f13083a7f8dd04f"
            },
            {
              "name": "3.1.7 git commit",
              "tags": [
                "patch"
              ],
              "url": "https://github.com/openssl/openssl/commit/621f3729831b05ee828a3203eddb621d014ff2b2"
            },
            {
              "name": "3.0.15 git commit",
              "tags": [
                "patch"
              ],
              "url": "https://github.com/openssl/openssl/commit/06d1dc3fa96a2ba5a3e22735a033012aadc9f0d6"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Possible denial of service in X.509 name checks",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "3a12439a-ef3a-4c79-92e6-6081a721f1e5",
        "assignerShortName": "openssl",
        "cveId": "CVE-2024-6119",
        "datePublished": "2024-09-03T15:58:06.970Z",
        "dateReserved": "2024-06-18T09:24:11.739Z",
        "dateUpdated": "2026-05-12T11:39:25.102Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-2398 (GCVE-0-2024-2398)

    Vulnerability from cvelistv5 – Published: 2024-03-27 07:55 – Updated: 2025-02-13 17:40
    VLAI
    Title
    HTTP/2 push headers memory-leak
    Summary
    When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the maximum allowed limit (1000), libcurl aborts the server push. When aborting, libcurl inadvertently does not free all the previously allocated headers and instead leaks the memory. Further, this error condition fails silently and is therefore not easily detected by an application.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Impacted products
    Vendor Product Version
    curl curl Affected: 8.6.0 , ≤ 8.6.0 (semver)
    Affected: 8.5.0 , ≤ 8.5.0 (semver)
    Affected: 8.4.0 , ≤ 8.4.0 (semver)
    Affected: 8.3.0 , ≤ 8.3.0 (semver)
    Affected: 8.2.1 , ≤ 8.2.1 (semver)
    Affected: 8.2.0 , ≤ 8.2.0 (semver)
    Affected: 8.1.2 , ≤ 8.1.2 (semver)
    Affected: 8.1.1 , ≤ 8.1.1 (semver)
    Affected: 8.1.0 , ≤ 8.1.0 (semver)
    Affected: 8.0.1 , ≤ 8.0.1 (semver)
    Affected: 8.0.0 , ≤ 8.0.0 (semver)
    Affected: 7.88.1 , ≤ 7.88.1 (semver)
    Affected: 7.88.0 , ≤ 7.88.0 (semver)
    Affected: 7.87.0 , ≤ 7.87.0 (semver)
    Affected: 7.86.0 , ≤ 7.86.0 (semver)
    Affected: 7.85.0 , ≤ 7.85.0 (semver)
    Affected: 7.84.0 , ≤ 7.84.0 (semver)
    Affected: 7.83.1 , ≤ 7.83.1 (semver)
    Affected: 7.83.0 , ≤ 7.83.0 (semver)
    Affected: 7.82.0 , ≤ 7.82.0 (semver)
    Affected: 7.81.0 , ≤ 7.81.0 (semver)
    Affected: 7.80.0 , ≤ 7.80.0 (semver)
    Affected: 7.79.1 , ≤ 7.79.1 (semver)
    Affected: 7.79.0 , ≤ 7.79.0 (semver)
    Affected: 7.78.0 , ≤ 7.78.0 (semver)
    Affected: 7.77.0 , ≤ 7.77.0 (semver)
    Affected: 7.76.1 , ≤ 7.76.1 (semver)
    Affected: 7.76.0 , ≤ 7.76.0 (semver)
    Affected: 7.75.0 , ≤ 7.75.0 (semver)
    Affected: 7.74.0 , ≤ 7.74.0 (semver)
    Affected: 7.73.0 , ≤ 7.73.0 (semver)
    Affected: 7.72.0 , ≤ 7.72.0 (semver)
    Affected: 7.71.1 , ≤ 7.71.1 (semver)
    Affected: 7.71.0 , ≤ 7.71.0 (semver)
    Affected: 7.70.0 , ≤ 7.70.0 (semver)
    Affected: 7.69.1 , ≤ 7.69.1 (semver)
    Affected: 7.69.0 , ≤ 7.69.0 (semver)
    Affected: 7.68.0 , ≤ 7.68.0 (semver)
    Affected: 7.67.0 , ≤ 7.67.0 (semver)
    Affected: 7.66.0 , ≤ 7.66.0 (semver)
    Affected: 7.65.3 , ≤ 7.65.3 (semver)
    Affected: 7.65.2 , ≤ 7.65.2 (semver)
    Affected: 7.65.1 , ≤ 7.65.1 (semver)
    Affected: 7.65.0 , ≤ 7.65.0 (semver)
    Affected: 7.64.1 , ≤ 7.64.1 (semver)
    Affected: 7.64.0 , ≤ 7.64.0 (semver)
    Affected: 7.63.0 , ≤ 7.63.0 (semver)
    Affected: 7.62.0 , ≤ 7.62.0 (semver)
    Affected: 7.61.1 , ≤ 7.61.1 (semver)
    Affected: 7.61.0 , ≤ 7.61.0 (semver)
    Affected: 7.60.0 , ≤ 7.60.0 (semver)
    Affected: 7.59.0 , ≤ 7.59.0 (semver)
    Affected: 7.58.0 , ≤ 7.58.0 (semver)
    Affected: 7.57.0 , ≤ 7.57.0 (semver)
    Affected: 7.56.1 , ≤ 7.56.1 (semver)
    Affected: 7.56.0 , ≤ 7.56.0 (semver)
    Affected: 7.55.1 , ≤ 7.55.1 (semver)
    Affected: 7.55.0 , ≤ 7.55.0 (semver)
    Affected: 7.54.1 , ≤ 7.54.1 (semver)
    Affected: 7.54.0 , ≤ 7.54.0 (semver)
    Affected: 7.53.1 , ≤ 7.53.1 (semver)
    Affected: 7.53.0 , ≤ 7.53.0 (semver)
    Affected: 7.52.1 , ≤ 7.52.1 (semver)
    Affected: 7.52.0 , ≤ 7.52.0 (semver)
    Affected: 7.51.0 , ≤ 7.51.0 (semver)
    Affected: 7.50.3 , ≤ 7.50.3 (semver)
    Affected: 7.50.2 , ≤ 7.50.2 (semver)
    Affected: 7.50.1 , ≤ 7.50.1 (semver)
    Affected: 7.50.0 , ≤ 7.50.0 (semver)
    Affected: 7.49.1 , ≤ 7.49.1 (semver)
    Affected: 7.49.0 , ≤ 7.49.0 (semver)
    Affected: 7.48.0 , ≤ 7.48.0 (semver)
    Affected: 7.47.1 , ≤ 7.47.1 (semver)
    Affected: 7.47.0 , ≤ 7.47.0 (semver)
    Affected: 7.46.0 , ≤ 7.46.0 (semver)
    Affected: 7.45.0 , ≤ 7.45.0 (semver)
    Affected: 7.44.0 , ≤ 7.44.0 (semver)
    Create a notification for this product.
    curl curl Affected: 7.44.0 , ≤ 8.6.0 (custom)
        cpe:2.3:a:curl:curl:7.4:*:*:*:*:*:*:*
    Create a notification for this product.
    Credits
    w0x42 on hackerone Stefan Eissing
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:curl:curl:7.4:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "curl",
                "vendor": "curl",
                "versions": [
                  {
                    "lessThanOrEqual": "8.6.0",
                    "status": "affected",
                    "version": "7.44.0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "LOW",
                  "baseScore": 8.6,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "LOW",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-2398",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-04-26T18:57:39.256472Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-06-04T17:30:40.286Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T19:11:53.566Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "json",
                "tags": [
                  "x_transferred"
                ],
                "url": "https://curl.se/docs/CVE-2024-2398.json"
              },
              {
                "name": "www",
                "tags": [
                  "x_transferred"
                ],
                "url": "https://curl.se/docs/CVE-2024-2398.html"
              },
              {
                "name": "issue",
                "tags": [
                  "x_transferred"
                ],
                "url": "https://hackerone.com/reports/2402845"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GMD6UYKCCRCYETWQZUJ65ZRFULT6SHLI/"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2D44YLAUFJU6BZ4XFG2FYV7SBKXB5IZ6/"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www.openwall.com/lists/oss-security/2024/03/27/3"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://security.netapp.com/advisory/ntap-20240503-0009/"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://support.apple.com/kb/HT214119"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://support.apple.com/kb/HT214118"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://support.apple.com/kb/HT214120"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://seclists.org/fulldisclosure/2024/Jul/20"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://seclists.org/fulldisclosure/2024/Jul/18"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://seclists.org/fulldisclosure/2024/Jul/19"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "curl",
              "vendor": "curl",
              "versions": [
                {
                  "lessThanOrEqual": "8.6.0",
                  "status": "affected",
                  "version": "8.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "8.5.0",
                  "status": "affected",
                  "version": "8.5.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "8.4.0",
                  "status": "affected",
                  "version": "8.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "8.3.0",
                  "status": "affected",
                  "version": "8.3.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "8.2.1",
                  "status": "affected",
                  "version": "8.2.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "8.2.0",
                  "status": "affected",
                  "version": "8.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "8.1.2",
                  "status": "affected",
                  "version": "8.1.2",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "8.1.1",
                  "status": "affected",
                  "version": "8.1.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "8.1.0",
                  "status": "affected",
                  "version": "8.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "8.0.1",
                  "status": "affected",
                  "version": "8.0.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "8.0.0",
                  "status": "affected",
                  "version": "8.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.88.1",
                  "status": "affected",
                  "version": "7.88.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.88.0",
                  "status": "affected",
                  "version": "7.88.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.87.0",
                  "status": "affected",
                  "version": "7.87.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.86.0",
                  "status": "affected",
                  "version": "7.86.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.85.0",
                  "status": "affected",
                  "version": "7.85.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.84.0",
                  "status": "affected",
                  "version": "7.84.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.83.1",
                  "status": "affected",
                  "version": "7.83.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.83.0",
                  "status": "affected",
                  "version": "7.83.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.82.0",
                  "status": "affected",
                  "version": "7.82.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.81.0",
                  "status": "affected",
                  "version": "7.81.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.80.0",
                  "status": "affected",
                  "version": "7.80.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.79.1",
                  "status": "affected",
                  "version": "7.79.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.79.0",
                  "status": "affected",
                  "version": "7.79.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.78.0",
                  "status": "affected",
                  "version": "7.78.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.77.0",
                  "status": "affected",
                  "version": "7.77.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.76.1",
                  "status": "affected",
                  "version": "7.76.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.76.0",
                  "status": "affected",
                  "version": "7.76.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.75.0",
                  "status": "affected",
                  "version": "7.75.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.74.0",
                  "status": "affected",
                  "version": "7.74.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.73.0",
                  "status": "affected",
                  "version": "7.73.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.72.0",
                  "status": "affected",
                  "version": "7.72.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.71.1",
                  "status": "affected",
                  "version": "7.71.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.71.0",
                  "status": "affected",
                  "version": "7.71.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.70.0",
                  "status": "affected",
                  "version": "7.70.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.69.1",
                  "status": "affected",
                  "version": "7.69.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.69.0",
                  "status": "affected",
                  "version": "7.69.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.68.0",
                  "status": "affected",
                  "version": "7.68.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.67.0",
                  "status": "affected",
                  "version": "7.67.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.66.0",
                  "status": "affected",
                  "version": "7.66.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.65.3",
                  "status": "affected",
                  "version": "7.65.3",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.65.2",
                  "status": "affected",
                  "version": "7.65.2",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.65.1",
                  "status": "affected",
                  "version": "7.65.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.65.0",
                  "status": "affected",
                  "version": "7.65.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.64.1",
                  "status": "affected",
                  "version": "7.64.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.64.0",
                  "status": "affected",
                  "version": "7.64.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.63.0",
                  "status": "affected",
                  "version": "7.63.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.62.0",
                  "status": "affected",
                  "version": "7.62.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.61.1",
                  "status": "affected",
                  "version": "7.61.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.61.0",
                  "status": "affected",
                  "version": "7.61.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.60.0",
                  "status": "affected",
                  "version": "7.60.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.59.0",
                  "status": "affected",
                  "version": "7.59.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.58.0",
                  "status": "affected",
                  "version": "7.58.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.57.0",
                  "status": "affected",
                  "version": "7.57.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.56.1",
                  "status": "affected",
                  "version": "7.56.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.56.0",
                  "status": "affected",
                  "version": "7.56.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.55.1",
                  "status": "affected",
                  "version": "7.55.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.55.0",
                  "status": "affected",
                  "version": "7.55.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.54.1",
                  "status": "affected",
                  "version": "7.54.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.54.0",
                  "status": "affected",
                  "version": "7.54.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.53.1",
                  "status": "affected",
                  "version": "7.53.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.53.0",
                  "status": "affected",
                  "version": "7.53.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.52.1",
                  "status": "affected",
                  "version": "7.52.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.52.0",
                  "status": "affected",
                  "version": "7.52.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.51.0",
                  "status": "affected",
                  "version": "7.51.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.50.3",
                  "status": "affected",
                  "version": "7.50.3",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.50.2",
                  "status": "affected",
                  "version": "7.50.2",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.50.1",
                  "status": "affected",
                  "version": "7.50.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.50.0",
                  "status": "affected",
                  "version": "7.50.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.49.1",
                  "status": "affected",
                  "version": "7.49.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.49.0",
                  "status": "affected",
                  "version": "7.49.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.48.0",
                  "status": "affected",
                  "version": "7.48.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.47.1",
                  "status": "affected",
                  "version": "7.47.1",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.47.0",
                  "status": "affected",
                  "version": "7.47.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.46.0",
                  "status": "affected",
                  "version": "7.46.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.45.0",
                  "status": "affected",
                  "version": "7.45.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.44.0",
                  "status": "affected",
                  "version": "7.44.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "w0x42 on hackerone"
            },
            {
              "lang": "en",
              "type": "remediation developer",
              "value": "Stefan Eissing"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the maximum allowed limit (1000), libcurl aborts the server push. When aborting, libcurl inadvertently does not free all the previously allocated headers and instead leaks the memory.  Further, this error condition fails silently and is therefore not easily detected by an application."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "CWE-772 Missing Release of Resource after Effective Lifetime",
                  "lang": "en"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-07-29T22:06:29.645Z",
            "orgId": "2499f714-1537-4658-8207-48ae4bb9eae9",
            "shortName": "curl"
          },
          "references": [
            {
              "name": "json",
              "url": "https://curl.se/docs/CVE-2024-2398.json"
            },
            {
              "name": "www",
              "url": "https://curl.se/docs/CVE-2024-2398.html"
            },
            {
              "name": "issue",
              "url": "https://hackerone.com/reports/2402845"
            },
            {
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GMD6UYKCCRCYETWQZUJ65ZRFULT6SHLI/"
            },
            {
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2D44YLAUFJU6BZ4XFG2FYV7SBKXB5IZ6/"
            },
            {
              "url": "http://www.openwall.com/lists/oss-security/2024/03/27/3"
            },
            {
              "url": "https://security.netapp.com/advisory/ntap-20240503-0009/"
            },
            {
              "url": "https://support.apple.com/kb/HT214119"
            },
            {
              "url": "https://support.apple.com/kb/HT214118"
            },
            {
              "url": "https://support.apple.com/kb/HT214120"
            },
            {
              "url": "http://seclists.org/fulldisclosure/2024/Jul/20"
            },
            {
              "url": "http://seclists.org/fulldisclosure/2024/Jul/18"
            },
            {
              "url": "http://seclists.org/fulldisclosure/2024/Jul/19"
            }
          ],
          "title": "HTTP/2 push headers memory-leak"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2499f714-1537-4658-8207-48ae4bb9eae9",
        "assignerShortName": "curl",
        "cveId": "CVE-2024-2398",
        "datePublished": "2024-03-27T07:55:48.524Z",
        "dateReserved": "2024-03-12T10:59:22.660Z",
        "dateUpdated": "2025-02-13T17:40:07.893Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-28531 (GCVE-0-2023-28531)

    Vulnerability from cvelistv5 – Published: 2023-03-17 00:00 – Updated: 2026-05-28 18:15
    VLAI
    Summary
    ssh-add in OpenSSH before 9.3 adds smartcard keys to ssh-agent without the intended per-hop destination constraints. The earliest affected version is 8.9.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • n/a
    • CWE-284 - Improper Access Control
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2025-11-04T18:14:27.987Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.openwall.com/lists/oss-security/2023/03/15/8"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://security.netapp.com/advisory/ntap-20230413-0008/"
              },
              {
                "name": "GLSA-202307-01",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://security.gentoo.org/glsa/202307-01"
              },
              {
                "name": "DSA-5586",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://www.debian.org/security/2023/dsa-5586"
              },
              {
                "name": "FEDORA-2024-2aac54ebb7",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AN2UDTXEUSKFIOIYMV6JNI5VSBMYZOFT/"
              },
              {
                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AN2UDTXEUSKFIOIYMV6JNI5VSBMYZOFT/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "defaultStatus": "unknown",
                "product": "SIPLUS S7-1500 CPU 1518-4 PN/DP MFP",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "V3.1.5",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-12T10:52:17.854Z",
              "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
              "shortName": "siemens-SADP"
            },
            "references": [
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-082556.html"
              }
            ],
            "x_adpType": "supplier"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-28531",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-11T20:20:13.493424Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-284",
                    "description": "CWE-284 Improper Access Control",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-28T18:15:12.867Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "ssh-add in OpenSSH before 9.3 adds smartcard keys to ssh-agent without the intended per-hop destination constraints. The earliest affected version is 8.9."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-02-12T03:06:25.997Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "url": "https://www.openwall.com/lists/oss-security/2023/03/15/8"
            },
            {
              "url": "https://security.netapp.com/advisory/ntap-20230413-0008/"
            },
            {
              "name": "GLSA-202307-01",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://security.gentoo.org/glsa/202307-01"
            },
            {
              "name": "DSA-5586",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.debian.org/security/2023/dsa-5586"
            },
            {
              "name": "FEDORA-2024-2aac54ebb7",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AN2UDTXEUSKFIOIYMV6JNI5VSBMYZOFT/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2023-28531",
        "datePublished": "2023-03-17T00:00:00.000Z",
        "dateReserved": "2023-03-17T00:00:00.000Z",
        "dateUpdated": "2026-05-28T18:15:12.867Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }