CVE-2021-22923medium
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
When curl is instructed to get content using the metalink feature, and a user name and password are used to download the metalink XML file, those same credentials are then subsequently passed on to each of the servers from which curl will download or try to download the contents from. Often contrary to the user's expectations and intentions and without telling the user it happened.
References
https://hackerone.com/reports/1213181
Details
Source: MITRE
Published: 2021-08-05
Updated: 2021-12-10
Type: CWE-522
Risk Information
CVSS v2
Base Score: 2.6
Vector: AV:N/AC:H/Au:N/C:P/I:N/A:N
Impact Score: 2.9
Exploitability Score: 4.9
Severity: LOW
CVSS v3
Base Score: 5.3
Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N
Impact Score: 3.6
Exploitability Score: 1.6
Severity: MEDIUM
Vulnerable Software
Configuration 1
OR
Configuration 2
OR
Configuration 3
OR
cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*
Configuration 4
OR
cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:* versions from 5.7.0 to 5.7.35 (inclusive)
cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:* versions from 8.0.0 to 8.0.26 (inclusive)
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 155491 | EulerOS Virtualization 2.9.0 : curl (EulerOS-SA-2021-2769) | Nessus | Huawei Local Security Checks | medium |
| 155489 | EulerOS Virtualization 2.9.1 : curl (EulerOS-SA-2021-2751) | Nessus | Huawei Local Security Checks | medium |
| 155263 | EulerOS 2.0 SP9 : curl (EulerOS-SA-2021-2707) | Nessus | Huawei Local Security Checks | medium |
| 155117 | EulerOS 2.0 SP9 : curl (EulerOS-SA-2021-2682) | Nessus | Huawei Local Security Checks | medium |
| 154794 | EulerOS 2.0 SP8 : curl (EulerOS-SA-2021-2627) | Nessus | Huawei Local Security Checks | medium |
| 154252 | RHEL 8 : curl (RHSA-2021:3903) | Nessus | Red Hat Local Security Checks | medium |
| 153539 | CentOS 8 : curl (CESA-2021:3582) | Nessus | CentOS Local Security Checks | low |
| 153534 | Oracle Linux 8 : curl (ELSA-2021-3582) | Nessus | Oracle Linux Local Security Checks | low |
| 153525 | RHEL 8 : curl (RHSA-2021:3582) | Nessus | Red Hat Local Security Checks | low |
| 153416 | Amazon Linux 2 : curl (ALAS-2021-1700) | Nessus | Amazon Linux Local Security Checks | medium |
| 152083 | Photon OS 3.0: Curl PHSA-2021-3.0-0273 | Nessus | PhotonOS Local Security Checks | medium |
| 152082 | Photon OS 4.0: Curl PHSA-2021-4.0-0069 | Nessus | PhotonOS Local Security Checks | medium |
| 152065 | openSUSE 15 Security Update : curl (openSUSE-SU-2021:1088-1) | Nessus | SuSE Local Security Checks | critical |
| 152060 | SUSE SLED12 / SLES12 Security Update : curl (SUSE-SU-2021:2462-1) | Nessus | SuSE Local Security Checks | critical |
| 151994 | SUSE SLES12 Security Update : curl (SUSE-SU-2021:2425-1) | Nessus | SuSE Local Security Checks | critical |
| 151993 | SUSE SLES11 Security Update : curl (SUSE-SU-2021:14768-1) | Nessus | SuSE Local Security Checks | critical |
| 151992 | SUSE SLES15 Security Update : curl (SUSE-SU-2021:2440-1) | Nessus | SuSE Local Security Checks | critical |
| 151990 | SUSE SLED15 / SLES15 Security Update : curl (SUSE-SU-2021:2439-1) | Nessus | SuSE Local Security Checks | critical |
| 151971 | FreeBSD : cURL -- Multiple vulnerabilities (aa646c01-ea0d-11eb-9b84-d4c9ef517024) | Nessus | FreeBSD Local Security Checks | medium |
| 151970 | Slackware 14.0 / 14.1 / 14.2 / current : curl (SSA:2021-202-02) | Nessus | Slackware Local Security Checks | critical |
| 151940 | openSUSE 15 Security Update : curl (openSUSE-SU-2021:2439-1) | Nessus | SuSE Local Security Checks | critical |