CVE Vulnerability

CVE-2022-32221

When doing HTTP(S) transfers, libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even when the `CURLOPT_POSTFIELDS` option has been set, if the same handle previously was used to issue a `PUT` request which used that callback. This flaw may surprise the application and cause it to misbehave and either send off the wrong data or use memory after free or similar in the subsequent `POST` request. The problem exists in the logic for a reused handle when it is changed from a PUT to a POST.

9.8 /10

CVSS v3.0 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://hackerone.com/reports/1704017 Exploit Issue Tracking
https://security.gentoo.org/glsa/202212-01 Third Party Advisory
https://security.netapp.com/advisory/ntap-20230110-0006/
https://support.apple.com/kb/HT213604
https://support.apple.com/kb/HT213605
http://seclists.org/fulldisclosure/2023/Jan/20
http://seclists.org/fulldisclosure/2023/Jan/19
https://www.debian.org/security/2023/dsa-5330
https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html
https://security.netapp.com/advisory/ntap-20230208-0002/
Configurations

Configuration 1

cpe:2.3:a:haxx:curl:*:*:*:*:*:*:*:*
Information

Published : 2022-12-05 10:15

Updated : 2023-02-08 08:15

NVD link : CVE-2022-32221

Mitre link : CVE-2022-32221

Products Affected

Curl

Haxx

CWE
CWE-668