Curl Vulnerability (CVE-2023-38545 & CVE-2023-38546)
search cancel

Curl Vulnerability (CVE-2023-38545 & CVE-2023-38546)

book

Article ID: 274817

calendar_today

Updated On:

Products

CA Automic One Automation CA Automic Operations Manager CA Automic Workload Automation - Automation Engine

Issue/Introduction

A high severity vulnerability was discovered in the curl library.

Environment

Automic Workload Automation 21.0.x

Cause

https://curl.se/docs/CVE-2023-38545.html

Resolution

The Automic Workload Automation engineering team has confirmed the usage of libcurl, but Automic does NOT use any of the options that cause SOCKS5 with remote hostname to be used in the curl tool.

Automic Workload Automation is not open to this vulnerability. 

 

 

Powered by Wolken Software