CVE-2022-27774
MEDIUMcurl 4.9-7.82.0 - Credential Leak via HTTP Redirect
Title source: llmDescription
An insufficiently protected credentials vulnerability exists in curl 4.9 to and include curl 7.82.0 are affected that could allow an attacker to extract credentials when follows HTTP(S) redirects is used with authentication could leak credentials to other services that exist on different protocols or port numbers.
References (5)
Core 5
Core References
Third Party Advisory vendor-advisory
https://www.debian.org/security/2022/dsa-5197
Third Party Advisory vendor-advisory
https://security.gentoo.org/glsa/202212-01
Mailing List, Third Party Advisory mailing-list
https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html
Exploit, Third Party Advisory
https://hackerone.com/reports/1543773
Third Party Advisory
https://security.netapp.com/advisory/ntap-20220609-0008/
Scores
CVSS v3
5.7
EPSS
0.0031
EPSS Percentile
54.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-522
Status
published
Products (15)
None/https://github.com/curl/curl
curl 4.9 to and include curl 7.82.0 are affected
brocade/fabric_operating_system
debian/debian_linux
10.0
debian/debian_linux
11.0
haxx/curl
4.9 - 7.82.0
netapp/clustered_data_ontap
netapp/h300s_firmware
netapp/h410s_firmware
netapp/h500s_firmware
netapp/h700s_firmware
... and 5 more
Published
Jun 02, 2022
Tracked Since
Feb 18, 2026