After some research, it looks like this CVE has been retracted by the CURL security team in Aug 2023, and the CVE is in Rejected status now. So this vulnerability should be able to be ignored.
https://curl.se/docs/CVE-2023-32001.html "As of August 2023, the curl security team has retracted this issue and we no longer consider this a curl security flaw."
https://nvd.nist.gov/vuln/detail/CVE-2023-32001 "REJECTED CVE status"
https://www.cve.org/ResourcesSupport/FAQs "A CVE Record listed as “REJECT” is a CVE Record that is not accepted as a CVE Record… As a rule, REJECT CVE Records should be ignored"