CVE-2022-27774

MEDIUM

Haxx Curl < 7.82.0 - Insufficiently Protected Credentials

Title source: rule

Description

An insufficiently protected credentials vulnerability exists in curl 4.9 to and include curl 7.82.0 are affected that could allow an attacker to extract credentials when follows HTTP(S) redirects is used with authentication could leak credentials to other services that exist on different protocols or port numbers.

References (5)

[Exploit, Third Party Advisory] https://hackerone.com/reports/1543773

[Mailing List, Third Party Advisory] https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html

[Third Party Advisory] https://security.gentoo.org/glsa/202212-01

[Third Party Advisory] https://security.netapp.com/advisory/ntap-20220609-0008/

[Third Party Advisory] https://www.debian.org/security/2022/dsa-5197

Scores

CVSS v3 5.7

EPSS 0.0029

EPSS Percentile 51.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

Classification

CWE

CWE-522

Status published

Affected Products (14)

haxx/curl < 7.82.0

debian/debian_linux

netapp/hci_bootstrap_os

netapp/clustered_data_ontap

netapp/solidfire_\&_hci_management_node

netapp/solidfire_\&_hci_storage_node

brocade/fabric_operating_system

netapp/h300s_firmware

netapp/h500s_firmware

netapp/h700s_firmware

netapp/h410s_firmware

splunk/universal_forwarder < 8.2.12

splunk/universal_forwarder

Timeline

Published Jun 02, 2022

Tracked Since Feb 18, 2026