Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.
CVE-2023-28322 is a low severity vulnerability with a CVSS score of 3.7. No known exploits currently, and patches are available.
Lower probability of exploitation
EPSS predicts the probability of exploitation in the next 30 days based on real-world threat data, complementing CVSS severity scores with actual risk assessment.
An information disclosure vulnerability exists in curl <v8.1.0 when doing HTTP(S) transfers, libcurl might erroneously use the read callback (CURLOPT_READFUNCTION) to ask for data to send, even when the CURLOPT_POSTFIELDS option has been set, if the same handle previously wasused to issue a PUT request which used that callback. This flaw may surprise the application and cause it to misbehave and either send off the wrong data or use memory after free or similar in the second transfer. The problem exists in the logic for a reused handle when it is (expected to be) changed from a PUT to a POST.
| Vendor | Product |
|---|---|
| Netapp | Clustered Data Ontap |
| Netapp |
Please cite this page when referencing data from Strobes VI. Proper attribution helps support our vulnerability intelligence research.
| H500s |
| Fedoraproject | Fedora |
| Netapp | Ontap Antivirus Connector |
| Netapp | H410s |
| Netapp | H700s Firmware |
| Netapp | H410s Firmware |
| Netapp | H300s |
| Netapp | H500s Firmware |
| Netapp | H300s Firmware |
And 3 more...