Out-of-bounds write vulnerability in curl in Apple Mac OS - CVE-2023-38545| ID: oval:org.secpod.oval:def:96974 | Date: (C)2024-01-23 (M)2024-04-29 |
| Class: VULNERABILITY | Family: macos |
The host is installed with Apple Mac OS 12 before 12.7.3, Apple Mac OS 13 before 13.6.4, Apple Mac OS 14 before 14.2, or Curl 7.69.0 before 8.4.0 and is prone to an out-of-bounds write vulnerability. A flaw is present in the application, which fails to properly handle multiple issues in curl. On successful exploitation, this flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake.
| Platform: |
| Apple Mac OS 14 |
| Apple Mac OS 13 |
| Apple Mac OS 12 |
| Apple Mac OS X 10.9 |
| Apple Mac OS X 10.10 |
| Apple Mac OS X 10.11 |
| Apple Mac OS X 10.12 |
| Apple Mac OS X 10.13 |
| Apple Mac OS X 10.14 |
| Apple Mac OS X 10.15 |
| Apple Mac OS 11 |
