Home

CVE-2021-22922

Description

When curl is instructed to download content using the metalink feature, thecontents is verified against a hash provided in the metalink XML file.The metalink XML file points out to the client how to get the same contentfrom a set of different URLs, potentially hosted by different servers and theclient can then download the file from one or several of them. In a serial orparallel manner.If one of the servers hosting the contents has been breached and the contentsof the specific file on that server is replaced with a modified payload, curlshould detect this when the hash of the file mismatches after a completeddownload. It should remove the contents and instead try getting the contentsfrom another URL. This is not done, and instead such a hash mismatch is onlymentioned in text and the potentially malicious content is kept in the file ondisk.

Risk Information

Base Score
6.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
EPSS Score
Exploitation Probability
0.194

Associated Vulnerability

VulnerabilityOS Platform
Vulnerability CVE-2021-22922,CVE-2021-22923,CVE-2021-22925,CVE-2021-22926 are affected in Curl For Windows 7.77.0Windows
Vulnerabilities CVE-2021-22926,CVE-2021-22925,CVE-2021-22924,CVE-2021-22923,CVE-2021-22922 are fixed in Curl For Windows 7.78.0Windows
SUSE-SU-2021:2462-1(SUSE Linux Enterprise Server 12-SP5 ) curl-7.60.0-11.23.1.x86_64.rpmLinux
SUSE-SU-2021:2462-1(SUSE Linux Enterprise Server 12-SP5 ) curl-debuginfo-7.60.0-11.23.1.x86_64.rpmLinux
SUSE-SU-2021:2462-1(SUSE Linux Enterprise Server 12-SP5 ) curl-debugsource-7.60.0-11.23.1.x86_64.rpmLinux
SUSE-SU-2021:2462-1(SUSE Linux Enterprise Server 12-SP5 ) libcurl4-7.60.0-11.23.1.x86_64.rpmLinux
SUSE-SU-2021:2462-1(SUSE Linux Enterprise Server 12-SP5 ) libcurl4-32bit-7.60.0-11.23.1.x86_64.rpmLinux
SUSE-SU-2021:2462-1(SUSE Linux Enterprise Server 12-SP5 ) libcurl4-debuginfo-7.60.0-11.23.1.x86_64.rpmLinux
SUSE-SU-2021:2462-1(SUSE Linux Enterprise Server 12-SP5 ) libcurl4-debuginfo-32bit-7.60.0-11.23.1.x86_64.rpmLinux
(RHSA-2021:3582) curl security update curl-7.61.1-18.el8_4.1.x86_64.rpmLinux
(RHSA-2021:3582) curl security update curl-debugsource-7.61.1-18.el8_4.1.i686.rpmLinux
(RHSA-2021:3582) curl security update curl-debugsource-7.61.1-18.el8_4.1.x86_64.rpmLinux
(RHSA-2021:3582) curl security update libcurl-7.61.1-18.el8_4.1.i686.rpmLinux
(RHSA-2021:3582) curl security update libcurl-7.61.1-18.el8_4.1.x86_64.rpmLinux
(RHSA-2021:3582) curl security update libcurl-devel-7.61.1-18.el8_4.1.i686.rpmLinux
(RHSA-2021:3582) curl security update libcurl-devel-7.61.1-18.el8_4.1.x86_64.rpmLinux
(RHSA-2021:3582) curl security update libcurl-minimal-7.61.1-18.el8_4.1.i686.rpmLinux
(RHSA-2021:3582) curl security update libcurl-minimal-7.61.1-18.el8_4.1.x86_64.rpmLinux
Curl update (ELSA-2021-3582) curl-7.61.1-18.el8_4.1.x86_64.rpmLinux
Libcurl update (ELSA-2021-3582) libcurl-7.61.1-18.el8_4.1.i686.rpmLinux
Libcurl update (ELSA-2021-3582) libcurl-7.61.1-18.el8_4.1.x86_64.rpmLinux
Libcurl-devel update (ELSA-2021-3582) libcurl-devel-7.61.1-18.el8_4.1.i686.rpmLinux
Libcurl-devel update (ELSA-2021-3582) libcurl-devel-7.61.1-18.el8_4.1.x86_64.rpmLinux
Libcurl-minimal update (ELSA-2021-3582) libcurl-minimal-7.61.1-18.el8_4.1.i686.rpmLinux
Libcurl-minimal update (ELSA-2021-3582) libcurl-minimal-7.61.1-18.el8_4.1.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234