CVE-2024-2398
Last modified
CVE-2024-2398 is a high-severity vulnerability rated 8.6/10 on the CVSS scale. When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the maximum allowed limit (1000), libcurl aborts the server push. When aborting, libcurl inadvertently does not free all the previously allocated headers and instead leaks the memory. EPSS estimates a 36.08% chance of exploitation in the next 30 days.
Description
When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the maximum allowed limit (1000), libcurl aborts the server push. When aborting, libcurl inadvertently does not free all the previously allocated headers and instead leaks the memory. Further, this error condition fails silently and is therefore not easily detected by an application.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Haxx | Curl | >= 7.44.0, < 8.7.0 |
| Apple | Macos | < 12.7.6 |
| Apple | Macos | >= 13.0, < 13.6.8 |
| Apple | Macos | >= 14.0, < 14.6 |
| Fedoraproject | Fedora | 39 |
| Fedoraproject | Fedora | 40 |
| Netapp | Active Iq Unified Manager | All versions |
| Netapp | Ontap Select Deploy Administration Utility | All versions |
| Netapp | Brocade Fabric Operating System | All versions |
| Netapp | Bootstrap Os | All versions |
| Netapp | H300s Firmware | All versions |
| Netapp | H410s Firmware | All versions |
| Netapp | H500s Firmware | All versions |
| Netapp | H610c Firmware | All versions |
| Netapp | H610s Firmware | All versions |
| Netapp | H615c Firmware | All versions |
| Netapp | H700s Firmware | All versions |
References
- http://seclists.org/fulldisclosure/2024/Jul/18Mailing List, Third Party Advisory
- http://seclists.org/fulldisclosure/2024/Jul/19Mailing List, Third Party Advisory
- http://seclists.org/fulldisclosure/2024/Jul/20Mailing List, Third Party Advisory
- http://www.openwall.com/lists/oss-security/2024/03/27/3Mailing List, Third Party Advisory
- https://curl.se/docs/CVE-2024-2398.htmlVendor Advisory
- https://curl.se/docs/CVE-2024-2398.jsonVendor Advisory
- https://hackerone.com/reports/2402845Exploit, Issue Tracking, Third Party Advisory
- https://security.netapp.com/advisory/ntap-20240503-0009/Third Party Advisory
- https://support.apple.com/kb/HT214118Release Notes, Vendor Advisory
- https://support.apple.com/kb/HT214119Release Notes, Vendor Advisory
- https://support.apple.com/kb/HT214120Release Notes, Vendor Advisory
- http://seclists.org/fulldisclosure/2024/Jul/18Mailing List, Third Party Advisory
- http://seclists.org/fulldisclosure/2024/Jul/19Mailing List, Third Party Advisory
- http://seclists.org/fulldisclosure/2024/Jul/20Mailing List, Third Party Advisory
- http://www.openwall.com/lists/oss-security/2024/03/27/3Mailing List, Third Party Advisory
- https://curl.se/docs/CVE-2024-2398.htmlVendor Advisory
- https://curl.se/docs/CVE-2024-2398.jsonVendor Advisory
- https://hackerone.com/reports/2402845Exploit, Issue Tracking, Third Party Advisory
- https://security.netapp.com/advisory/ntap-20240503-0009/Third Party Advisory
- https://support.apple.com/kb/HT214118Release Notes, Vendor Advisory
- https://support.apple.com/kb/HT214119Release Notes, Vendor Advisory
- https://support.apple.com/kb/HT214120Release Notes, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2024-2398?
How severe is CVE-2024-2398?
How do I fix CVE-2024-2398?
Are you affected by CVE-2024-2398?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST