---

CVE-2023-38546 - log back

CVE-2023-38546 created at 11 Oct 2023 09:09:42
Severity	+ Low
Remote	+ Remote
Type	+ Content spoofing
Description	+ A logic flaw has been found in cURL before 8.4.0, which allows an attacker to insert cookies at will into a running program using libcurl, if the specific series of conditions are met.
References	+ https://curl.se/docs/CVE-2023-38546.html + https://github.com/curl/curl/commit/61275672b46d9abb32857404
Notes