CVE-2023-27534

Name
CVE-2023-27534
Description
A path traversal vulnerability exists in curl <8.0.0 SFTP implementation causes the tilde (~) character to be wrongly replaced when used as a prefix in the first path element, in addition to its intended use as the first element to indicate a path relative to the user's home directory. Attackers can exploit this flaw to bypass filtering or execute arbitrary code by crafting a path like /~2/foo while accessing a server with a specific user.
NVD Severity
unknown
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://hackerone.com/reports/1892351
FEDORA https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/36NBD5YLJXXEDZLDGNFCERWRYJQ6LAQW/
CONFIRM https://security.netapp.com/advisory/ntap-20230420-0012/
Third Party Advisory https://security.gentoo.org/glsa/202310-12
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/36NBD5YLJXXEDZLDGNFCERWRYJQ6LAQW/
support@hackerone.com https://lists.debian.org/debian-lts-announce/2024/03/msg00016.html

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:haxx:curl:*:*:*:*:*:*:*:* curl >= 7.18.0 <= 7.88.1

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
curl 3.14-main 8.0.1-r0 Natanael Copa <ncopa@alpinelinux.org> fixed