Details of VAR-202206-1963

ID

VAR-202206-1963

CVE

CVE-2022-32207

TITLE

curl Vulnerability regarding improper default permissions in

Trust: 0.8

sources: JVNDB: JVNDB-2022-015269

DESCRIPTION

When curl < 7.84.0 saves cookies, alt-svc and hsts data to local files, it makes the operation atomic by finalizing the operation with a rename from a temporary name to the final target file name.In that rename operation, it might accidentally *widen* the permissions for the target file, leaving the updated file accessible to more users than intended. curl There is a vulnerability in improper default permissions.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. ========================================================================== Ubuntu Security Notice USN-5495-1 June 27, 2022 curl vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS - Ubuntu 21.10 - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS Summary: Several security issues were fixed in curl. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 21.10, and Ubuntu 22.04 LTS. (CVE-2022-32205) Harry Sintonen discovered that curl incorrectly handled certain HTTP compressions. An attacker could possibly use this issue to cause a denial of service. (CVE-2022-32206) Harry Sintonen incorrectly handled certain file permissions. An attacker could possibly use this issue to expose sensitive information. This issue only affected Ubuntu 21.10, and Ubuntu 22.04 LTS. (CVE-2022-32207) Harry Sintonen discovered that curl incorrectly handled certain FTP-KRB messages. An attacker could possibly use this to perform a machine-in-the-diddle attack. (CVE-2022-32208) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.04 LTS: curl 7.81.0-1ubuntu1.3 libcurl3-gnutls 7.81.0-1ubuntu1.3 libcurl3-nss 7.81.0-1ubuntu1.3 libcurl4 7.81.0-1ubuntu1.3 Ubuntu 21.10: curl 7.74.0-1.3ubuntu2.3 libcurl3-gnutls 7.74.0-1.3ubuntu2.3 libcurl3-nss 7.74.0-1.3ubuntu2.3 libcurl4 7.74.0-1.3ubuntu2.3 Ubuntu 20.04 LTS: curl 7.68.0-1ubuntu2.12 libcurl3-gnutls 7.68.0-1ubuntu2.12 libcurl3-nss 7.68.0-1ubuntu2.12 libcurl4 7.68.0-1ubuntu2.12 Ubuntu 18.04 LTS: curl 7.58.0-2ubuntu3.19 libcurl3-gnutls 7.58.0-2ubuntu3.19 libcurl3-nss 7.58.0-2ubuntu3.19 libcurl4 7.58.0-2ubuntu3.19 In general, a standard system update will make all the necessary changes. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: curl security update Advisory ID: RHSA-2022:6157-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:6157 Issue date: 2022-08-24 CVE Names: CVE-2022-32206 CVE-2022-32207 CVE-2022-32208 ==================================================================== 1. Summary: An update for curl is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream (v. 9) - aarch64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux BaseOS (v. 9) - aarch64, ppc64le, s390x, x86_64 3. Description: The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Security Fix(es): * curl: HTTP compression denial of service (CVE-2022-32206) * curl: Unpreserved file permissions (CVE-2022-32207) * curl: FTP-KRB bad message verification (CVE-2022-32208) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2099300 - CVE-2022-32206 curl: HTTP compression denial of service 2099305 - CVE-2022-32207 curl: Unpreserved file permissions 2099306 - CVE-2022-32208 curl: FTP-KRB bad message verification 6. Package List: Red Hat Enterprise Linux AppStream (v. 9): aarch64: curl-debuginfo-7.76.1-14.el9_0.5.aarch64.rpm curl-debugsource-7.76.1-14.el9_0.5.aarch64.rpm curl-minimal-debuginfo-7.76.1-14.el9_0.5.aarch64.rpm libcurl-debuginfo-7.76.1-14.el9_0.5.aarch64.rpm libcurl-devel-7.76.1-14.el9_0.5.aarch64.rpm libcurl-minimal-debuginfo-7.76.1-14.el9_0.5.aarch64.rpm ppc64le: curl-debuginfo-7.76.1-14.el9_0.5.ppc64le.rpm curl-debugsource-7.76.1-14.el9_0.5.ppc64le.rpm curl-minimal-debuginfo-7.76.1-14.el9_0.5.ppc64le.rpm libcurl-debuginfo-7.76.1-14.el9_0.5.ppc64le.rpm libcurl-devel-7.76.1-14.el9_0.5.ppc64le.rpm libcurl-minimal-debuginfo-7.76.1-14.el9_0.5.ppc64le.rpm s390x: curl-debuginfo-7.76.1-14.el9_0.5.s390x.rpm curl-debugsource-7.76.1-14.el9_0.5.s390x.rpm curl-minimal-debuginfo-7.76.1-14.el9_0.5.s390x.rpm libcurl-debuginfo-7.76.1-14.el9_0.5.s390x.rpm libcurl-devel-7.76.1-14.el9_0.5.s390x.rpm libcurl-minimal-debuginfo-7.76.1-14.el9_0.5.s390x.rpm x86_64: curl-debuginfo-7.76.1-14.el9_0.5.i686.rpm curl-debuginfo-7.76.1-14.el9_0.5.x86_64.rpm curl-debugsource-7.76.1-14.el9_0.5.i686.rpm curl-debugsource-7.76.1-14.el9_0.5.x86_64.rpm curl-minimal-debuginfo-7.76.1-14.el9_0.5.i686.rpm curl-minimal-debuginfo-7.76.1-14.el9_0.5.x86_64.rpm libcurl-debuginfo-7.76.1-14.el9_0.5.i686.rpm libcurl-debuginfo-7.76.1-14.el9_0.5.x86_64.rpm libcurl-devel-7.76.1-14.el9_0.5.i686.rpm libcurl-devel-7.76.1-14.el9_0.5.x86_64.rpm libcurl-minimal-debuginfo-7.76.1-14.el9_0.5.i686.rpm libcurl-minimal-debuginfo-7.76.1-14.el9_0.5.x86_64.rpm Red Hat Enterprise Linux BaseOS (v. 9): Source: curl-7.76.1-14.el9_0.5.src.rpm aarch64: curl-7.76.1-14.el9_0.5.aarch64.rpm curl-debuginfo-7.76.1-14.el9_0.5.aarch64.rpm curl-debugsource-7.76.1-14.el9_0.5.aarch64.rpm curl-minimal-7.76.1-14.el9_0.5.aarch64.rpm curl-minimal-debuginfo-7.76.1-14.el9_0.5.aarch64.rpm libcurl-7.76.1-14.el9_0.5.aarch64.rpm libcurl-debuginfo-7.76.1-14.el9_0.5.aarch64.rpm libcurl-minimal-7.76.1-14.el9_0.5.aarch64.rpm libcurl-minimal-debuginfo-7.76.1-14.el9_0.5.aarch64.rpm ppc64le: curl-7.76.1-14.el9_0.5.ppc64le.rpm curl-debuginfo-7.76.1-14.el9_0.5.ppc64le.rpm curl-debugsource-7.76.1-14.el9_0.5.ppc64le.rpm curl-minimal-7.76.1-14.el9_0.5.ppc64le.rpm curl-minimal-debuginfo-7.76.1-14.el9_0.5.ppc64le.rpm libcurl-7.76.1-14.el9_0.5.ppc64le.rpm libcurl-debuginfo-7.76.1-14.el9_0.5.ppc64le.rpm libcurl-minimal-7.76.1-14.el9_0.5.ppc64le.rpm libcurl-minimal-debuginfo-7.76.1-14.el9_0.5.ppc64le.rpm s390x: curl-7.76.1-14.el9_0.5.s390x.rpm curl-debuginfo-7.76.1-14.el9_0.5.s390x.rpm curl-debugsource-7.76.1-14.el9_0.5.s390x.rpm curl-minimal-7.76.1-14.el9_0.5.s390x.rpm curl-minimal-debuginfo-7.76.1-14.el9_0.5.s390x.rpm libcurl-7.76.1-14.el9_0.5.s390x.rpm libcurl-debuginfo-7.76.1-14.el9_0.5.s390x.rpm libcurl-minimal-7.76.1-14.el9_0.5.s390x.rpm libcurl-minimal-debuginfo-7.76.1-14.el9_0.5.s390x.rpm x86_64: curl-7.76.1-14.el9_0.5.x86_64.rpm curl-debuginfo-7.76.1-14.el9_0.5.i686.rpm curl-debuginfo-7.76.1-14.el9_0.5.x86_64.rpm curl-debugsource-7.76.1-14.el9_0.5.i686.rpm curl-debugsource-7.76.1-14.el9_0.5.x86_64.rpm curl-minimal-7.76.1-14.el9_0.5.x86_64.rpm curl-minimal-debuginfo-7.76.1-14.el9_0.5.i686.rpm curl-minimal-debuginfo-7.76.1-14.el9_0.5.x86_64.rpm libcurl-7.76.1-14.el9_0.5.i686.rpm libcurl-7.76.1-14.el9_0.5.x86_64.rpm libcurl-debuginfo-7.76.1-14.el9_0.5.i686.rpm libcurl-debuginfo-7.76.1-14.el9_0.5.x86_64.rpm libcurl-minimal-7.76.1-14.el9_0.5.i686.rpm libcurl-minimal-7.76.1-14.el9_0.5.x86_64.rpm libcurl-minimal-debuginfo-7.76.1-14.el9_0.5.i686.rpm libcurl-minimal-debuginfo-7.76.1-14.el9_0.5.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2022-32206 https://access.redhat.com/security/cve/CVE-2022-32207 https://access.redhat.com/security/cve/CVE-2022-32208 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYwZpA9zjgjWX9erEAQjorQ/9G7KqpJrOkRXFM3iFlTVnUV/mGwdu4v5p dru+hce/7sEETk1Er9JXSBIZvtCk31V7QxswgIpgAwCBX/Ie/wr+tosF3jE+4YjL MCgtbk5Tzuak49Gsggz40GbvauEm3NiSyLPmG+A+tWrjqst3UWwobirEg7iVGUU1 OOWKhNPzAr0iWoY1z2EBvBl23Fo8gaMYX9dd8dhcGza2OVMwzywrNW69h6bsQhDp Y5nAyBBCvwosqmDdIzZV5vDQEWoxb5uP+jnRgwtgJpaqdsn+ULkDuShIQZGntdA5 fSCM57aSEmOY0bx/fE3/Z1b8Si3+GJ+j688rSlcRwlaA+Bxo5Az+PUbe4eWwTc2B vstfKWZHPLv/nyq+1JjV7/e+cuwAkn9YsT3/TUPlLtGjmg1x+4wytRXEF3uipFZR P5TJGLIlvaQbnpNfVfkxefCvvGRuomILaP12rRYuKuI1CR+jRLu3jEmFfoSyJs/q WR9OXuSQEFjTmLo3m8S7iRLN6bUWKItYhNmaSucZRgCvayT5BY54GbbssIAykQX8 zLXIbqHQJec8sJuIdSwDSAuxyhrq30kSk0WLpfkK/uw179XpUphNK9CHL7VnGiVj haaef/yP7L12NBguJBmUnYWaWwa3sqepNQ3D8RQYXHrOmQ38VOjL76RQ0URYPkSB pl2iagecnP0=fQUi -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://listman.redhat.com/mailman/listinfo/rhsa-announce . These flaws may allow remote attackers to obtain sensitive information, leak authentication or cookie header data or facilitate a denial of service attack. For the stable distribution (bullseye), these problems have been fixed in version 7.74.0-1.3+deb11u2. We recommend that you upgrade your curl packages. For the detailed security status of curl please refer to its security tracker page at: https://security-tracker.debian.org/tracker/curl Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQKTBAEBCgB9FiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAmLoBaNfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQACgkQ2a0UuVE7 UeTf9A//VWkco2gxCMMe8JDcL9sLD0B5L8KGRxbPBYmpE1l2kCpiW9QGVwCN3q2K i8xo0jmRxSwSXDmAE17aTtGT66vU8vQSHewty031TcvWKBoAJpKRTbazfdOy/vDD waofTEaUClFt3NNiR3gigRU6OFV/9MWlUWwCJ/Wgd5osJTQCyWV/iHz3FJluc1Gp rXamYLnWGUJbIZgMFEo7TqIyb91P0PrX4hpnCcnhvY4ci5NWOj2qaoWGhgF+f9gz Uao91GTOnuTyoY3apKzifdO5dih9zJttnRKUgHkn9YCGxanljoPjHRYOavWdN6bE yIpT/Xw2dy05Fzydb73bDurQP+mkyWGZA+S8gxtbY7S7OylRS9iHSfyUpAVEM/Ab SPkGQl6vBKr7dmyHkdIlbViste6kcmhQQete9E3tM18MkyK0NbBiUj+pShNPC+SF REStal14ZE+DSwFKp5UA8izEh0G5RC5VUVhB/jtoxym2rvmIamk5YqCS1rupGP9R 1Y+Jm8CywBrKHl5EzAVUswC5xDAArWdXRvrgHCeElnkwuCwRC8AgRiYFFRulWKwt TV5qveehnzSc2z5IDc/tdiPWNJhJu/blNN8BauG8zmJV4ZhZP9EO1FCLE7DpqQ38 EPtUTMXaMQR1W15He51auBQwJgSiX1II+5jh6PeZTKBKnJgLYNA= =3E71 -----END PGP SIGNATURE----- . This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for a more consistent update experience. This release of Red Hat JBoss Core Services Apache HTTP Server 2.4.51 Service Pack 1 serves as a replacement for Red Hat JBoss Core Services Apache HTTP Server 2.4.51, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. After installing the updated packages, the httpd daemon will be restarted automatically. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 202212-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: curl: Multiple Vulnerabilities Date: December 19, 2022 Bugs: #803308, #813270, #841302, #843824, #854708, #867679, #878365 ID: 202212-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= Multiple vulnerabilities have been found in curl, the worst of which could result in arbitrary code execution. Background ========= A command line tool and library for transferring data with URLs. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-misc/curl < 7.86.0 >= 7.86.0 Description ========== Multiple vulnerabilities have been discovered in curl. Please review the CVE identifiers referenced below for details. Impact ===== Please review the referenced CVE identifiers for details. Workaround ========= There is no known workaround at this time. Resolution ========= All curl users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=net-misc/curl-7.86.0" References ========= [ 1 ] CVE-2021-22922 https://nvd.nist.gov/vuln/detail/CVE-2021-22922 [ 2 ] CVE-2021-22923 https://nvd.nist.gov/vuln/detail/CVE-2021-22923 [ 3 ] CVE-2021-22925 https://nvd.nist.gov/vuln/detail/CVE-2021-22925 [ 4 ] CVE-2021-22926 https://nvd.nist.gov/vuln/detail/CVE-2021-22926 [ 5 ] CVE-2021-22945 https://nvd.nist.gov/vuln/detail/CVE-2021-22945 [ 6 ] CVE-2021-22946 https://nvd.nist.gov/vuln/detail/CVE-2021-22946 [ 7 ] CVE-2021-22947 https://nvd.nist.gov/vuln/detail/CVE-2021-22947 [ 8 ] CVE-2022-22576 https://nvd.nist.gov/vuln/detail/CVE-2022-22576 [ 9 ] CVE-2022-27774 https://nvd.nist.gov/vuln/detail/CVE-2022-27774 [ 10 ] CVE-2022-27775 https://nvd.nist.gov/vuln/detail/CVE-2022-27775 [ 11 ] CVE-2022-27776 https://nvd.nist.gov/vuln/detail/CVE-2022-27776 [ 12 ] CVE-2022-27779 https://nvd.nist.gov/vuln/detail/CVE-2022-27779 [ 13 ] CVE-2022-27780 https://nvd.nist.gov/vuln/detail/CVE-2022-27780 [ 14 ] CVE-2022-27781 https://nvd.nist.gov/vuln/detail/CVE-2022-27781 [ 15 ] CVE-2022-27782 https://nvd.nist.gov/vuln/detail/CVE-2022-27782 [ 16 ] CVE-2022-30115 https://nvd.nist.gov/vuln/detail/CVE-2022-30115 [ 17 ] CVE-2022-32205 https://nvd.nist.gov/vuln/detail/CVE-2022-32205 [ 18 ] CVE-2022-32206 https://nvd.nist.gov/vuln/detail/CVE-2022-32206 [ 19 ] CVE-2022-32207 https://nvd.nist.gov/vuln/detail/CVE-2022-32207 [ 20 ] CVE-2022-32208 https://nvd.nist.gov/vuln/detail/CVE-2022-32208 [ 21 ] CVE-2022-32221 https://nvd.nist.gov/vuln/detail/CVE-2022-32221 [ 22 ] CVE-2022-35252 https://nvd.nist.gov/vuln/detail/CVE-2022-35252 [ 23 ] CVE-2022-35260 https://nvd.nist.gov/vuln/detail/CVE-2022-35260 [ 24 ] CVE-2022-42915 https://nvd.nist.gov/vuln/detail/CVE-2022-42915 [ 25 ] CVE-2022-42916 https://nvd.nist.gov/vuln/detail/CVE-2022-42916 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/202212-01 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org. License ====== Copyright 2022 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5

Trust: 2.34

sources: NVD: CVE-2022-32207 // JVNDB: JVNDB-2022-015269 // VULHUB: VHN-424134 // VULMON: CVE-2022-32207 // PACKETSTORM: 167607 // PACKETSTORM: 168174 // PACKETSTORM: 169318 // PACKETSTORM: 170166 // PACKETSTORM: 170303 // PACKETSTORM: 170165

AFFECTED PRODUCTS

vendor:	haxx	model:	curl	scope:	gte	version:	7.69.0	Trust: 1.0
vendor:	netapp	model:	h300s	scope:	eq	version:	-	Trust: 1.0
vendor:	netapp	model:	h410s	scope:	eq	version:	-	Trust: 1.0
vendor:	netapp	model:	solidfire	scope:	eq	version:	-	Trust: 1.0
vendor:	netapp	model:	bootstrap os	scope:	eq	version:	-	Trust: 1.0
vendor:	splunk	model:	universal forwarder	scope:	eq	version:	9.1.0	Trust: 1.0
vendor:	netapp	model:	h700s	scope:	eq	version:	-	Trust: 1.0
vendor:	netapp	model:	element software	scope:	eq	version:	-	Trust: 1.0
vendor:	splunk	model:	universal forwarder	scope:	lt	version:	8.2.12	Trust: 1.0
vendor:	fedoraproject	model:	fedora	scope:	eq	version:	35	Trust: 1.0
vendor:	debian	model:	linux	scope:	eq	version:	11.0	Trust: 1.0
vendor:	splunk	model:	universal forwarder	scope:	lt	version:	9.0.6	Trust: 1.0
vendor:	apple	model:	macos	scope:	lt	version:	13.0	Trust: 1.0
vendor:	haxx	model:	curl	scope:	lt	version:	7.84.0	Trust: 1.0
vendor:	splunk	model:	universal forwarder	scope:	gte	version:	9.0.0	Trust: 1.0
vendor:	netapp	model:	hci management node	scope:	eq	version:	-	Trust: 1.0
vendor:	netapp	model:	clustered data ontap	scope:	eq	version:	-	Trust: 1.0
vendor:	netapp	model:	h500s	scope:	eq	version:	-	Trust: 1.0
vendor:	splunk	model:	universal forwarder	scope:	gte	version:	8.2.0	Trust: 1.0
vendor:	fedora	model:	fedora	scope:	-	version:	-	Trust: 0.8
vendor:	netapp	model:	hci management node	scope:	-	version:	-	Trust: 0.8
vendor:	netapp	model:	element software	scope:	-	version:	-	Trust: 0.8
vendor:	netapp	model:	h300s	scope:	-	version:	-	Trust: 0.8
vendor:	netapp	model:	solidfire	scope:	-	version:	-	Trust: 0.8
vendor:	netapp	model:	clustered data ontap	scope:	-	version:	-	Trust: 0.8
vendor:	haxx	model:	curl	scope:	-	version:	-	Trust: 0.8
vendor:	debian	model:	gnu/linux	scope:	-	version:	-	Trust: 0.8
vendor:	netapp	model:	bootstrap os	scope:	-	version:	-	Trust: 0.8
vendor:	アップル	model:	macos	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2022-015269 // NVD: CVE-2022-32207

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2022-32207
value:	CRITICAL
Trust: 1.0
NVD:	CVE-2022-32207
value:	CRITICAL
Trust: 0.8
CNNVD:	CNNVD-202206-2569
value:	CRITICAL
Trust: 0.6
VULHUB:	VHN-424134
value:	HIGH
Trust: 0.1
VULMON:	CVE-2022-32207
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2022-32207
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
VULHUB:	VHN-424134
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2022-32207
baseSeverity:	CRITICAL
baseScore:	9.8
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	5.9
version:	3.1
Trust: 1.0
NVD:	CVE-2022-32207
baseSeverity:	CRITICAL
baseScore:	9.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: VULHUB: VHN-424134 // VULMON: CVE-2022-32207 // JVNDB: JVNDB-2022-015269 // CNNVD: CNNVD-202206-2569 // NVD: CVE-2022-32207

PROBLEMTYPE DATA

problemtype:	CWE-276	Trust: 1.1
problemtype:	CWE-840	Trust: 1.0
problemtype:	Inappropriate default permissions (CWE-276) [NVD evaluation ]	Trust: 0.8

sources: VULHUB: VHN-424134 // JVNDB: JVNDB-2022-015269 // NVD: CVE-2022-32207

THREAT TYPE

remote

Trust: 0.7

sources: PACKETSTORM: 169318 // CNNVD: CNNVD-202206-2569

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-202206-2569

PATCH

title:	HT213488 Apple Security update	url:	https://www.debian.org/security/2022/dsa-5197	Trust: 0.8
title:	curl Security vulnerabilities	url:	http://123.124.177.30/web/xxk/bdxqById.tag?id=199973	Trust: 0.6
title:	Red Hat: Moderate: curl security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20226157 - Security Advisory	Trust: 0.1
title:	Ubuntu Security Notice: USN-5495-1: curl vulnerabilities	url:	https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice&qid=USN-5495-1	Trust: 0.1
title:	Red Hat:	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database&qid=CVE-2022-32207	Trust: 0.1
title:	Arch Linux Issues:	url:	https://vulmon.com/vendoradvisory?qidtp=arch_linux_issues&qid=CVE-2022-32207	Trust: 0.1
title:	Red Hat: Moderate: Red Hat JBoss Core Services Apache HTTP Server 2.4.51 SP1 security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20228840 - Security Advisory	Trust: 0.1
title:	Red Hat: Important: Red Hat JBoss Core Services Apache HTTP Server 2.4.51 SP1 security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20228841 - Security Advisory	Trust: 0.1
title:	Amazon Linux 2: ALAS2-2022-1875	url:	https://vulmon.com/vendoradvisory?qidtp=amazon_linux2&qid=ALAS2-2022-1875	Trust: 0.1
title:	Debian Security Advisories: DSA-5197-1 curl -- security update	url:	https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories&qid=d9b734e3e9b6712333c95a6263dead82	Trust: 0.1
title:	Amazon Linux 2022: ALAS2022-2022-206	url:	https://vulmon.com/vendoradvisory?qidtp=amazon_linux2022&qid=ALAS2022-2022-206	Trust: 0.1
title:	Amazon Linux 2022: ALAS2022-2022-145	url:	https://vulmon.com/vendoradvisory?qidtp=amazon_linux2022&qid=ALAS2022-2022-145	Trust: 0.1
title:	-	url:	https://github.com/Live-Hack-CVE/CVE-2022-32207	Trust: 0.1

sources: VULMON: CVE-2022-32207 // JVNDB: JVNDB-2022-015269 // CNNVD: CNNVD-202206-2569

EXTERNAL IDS

db:	NVD	id:	CVE-2022-32207	Trust: 4.0
db:	HACKERONE	id:	1573634	Trust: 2.6
db:	PACKETSTORM	id:	168174	Trust: 0.8
db:	PACKETSTORM	id:	167607	Trust: 0.8
db:	JVN	id:	JVNVU99464755	Trust: 0.8
db:	JVN	id:	JVNVU95292697	Trust: 0.8
db:	JVN	id:	JVNVU99752892	Trust: 0.8
db:	JVN	id:	JVNVU94715153	Trust: 0.8
db:	ICS CERT	id:	ICSA-23-166-12	Trust: 0.8
db:	ICS CERT	id:	ICSA-23-075-01	Trust: 0.8
db:	ICS CERT	id:	ICSA-23-194-01	Trust: 0.8
db:	ICS CERT	id:	ICSA-23-103-09	Trust: 0.8
db:	JVNDB	id:	JVNDB-2022-015269	Trust: 0.8
db:	PACKETSTORM	id:	169318	Trust: 0.7
db:	PACKETSTORM	id:	170166	Trust: 0.7
db:	AUSCERT	id:	ESB-2022.6333	Trust: 0.6
db:	AUSCERT	id:	ESB-2023.3732	Trust: 0.6
db:	AUSCERT	id:	ESB-2022.3117	Trust: 0.6
db:	AUSCERT	id:	ESB-2023.2163	Trust: 0.6
db:	AUSCERT	id:	ESB-2022.5300	Trust: 0.6
db:	AUSCERT	id:	ESB-2023.3143	Trust: 0.6
db:	CS-HELP	id:	SB2022062927	Trust: 0.6
db:	CS-HELP	id:	SB2022071142	Trust: 0.6
db:	CNNVD	id:	CNNVD-202206-2569	Trust: 0.6
db:	VULHUB	id:	VHN-424134	Trust: 0.1
db:	VULMON	id:	CVE-2022-32207	Trust: 0.1
db:	PACKETSTORM	id:	170303	Trust: 0.1
db:	PACKETSTORM	id:	170165	Trust: 0.1

sources: VULHUB: VHN-424134 // VULMON: CVE-2022-32207 // JVNDB: JVNDB-2022-015269 // PACKETSTORM: 167607 // PACKETSTORM: 168174 // PACKETSTORM: 169318 // PACKETSTORM: 170166 // PACKETSTORM: 170303 // PACKETSTORM: 170165 // CNNVD: CNNVD-202206-2569 // NVD: CVE-2022-32207

REFERENCES

url:	https://hackerone.com/reports/1573634	Trust: 2.6
url:	https://security.gentoo.org/glsa/202212-01	Trust: 1.9
url:	https://security.netapp.com/advisory/ntap-20220915-0003/	Trust: 1.8
url:	https://support.apple.com/kb/ht213488	Trust: 1.8
url:	https://www.debian.org/security/2022/dsa-5197	Trust: 1.8
url:	http://seclists.org/fulldisclosure/2022/oct/28	Trust: 1.8
url:	http://seclists.org/fulldisclosure/2022/oct/41	Trust: 1.8
url:	https://nvd.nist.gov/vuln/detail/cve-2022-32207	Trust: 1.4
url:	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/bev6br4mti3cewk2yu2hqzuw5fas3fey/	Trust: 1.0
url:	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/bev6br4mti3cewk2yu2hqzuw5fas3fey/	Trust: 0.8
url:	https://jvn.jp/vu/jvnvu99752892	Trust: 0.8
url:	https://jvn.jp/vu/jvnvu94715153	Trust: 0.8
url:	https://jvn.jp/vu/jvnvu99464755	Trust: 0.8
url:	https://jvn.jp/vu/jvnvu95292697	Trust: 0.8
url:	https://www.cisa.gov/news-events/ics-advisories/icsa-23-075-01	Trust: 0.8
url:	https://www.cisa.gov/news-events/ics-advisories/icsa-23-103-09	Trust: 0.8
url:	https://www.cisa.gov/news-events/ics-advisories/icsa-23-166-12	Trust: 0.8
url:	https://www.cisa.gov/news-events/ics-advisories/icsa-23-194-01	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2022-32206	Trust: 0.6
url:	https://packetstormsecurity.com/files/167607/ubuntu-security-notice-usn-5495-1.html	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2023.3143	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2023.2163	Trust: 0.6
url:	https://www.cybersecurity-help.cz/vdb/sb2022071142	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2023.3732	Trust: 0.6
url:	https://www.cybersecurity-help.cz/vdb/sb2022062927	Trust: 0.6
url:	https://support.apple.com/en-us/ht213488	Trust: 0.6
url:	https://packetstormsecurity.com/files/169318/debian-security-advisory-5197-1.html	Trust: 0.6
url:	https://packetstormsecurity.com/files/168174/red-hat-security-advisory-2022-6157-01.html	Trust: 0.6
url:	https://vigilance.fr/vulnerability/curl-privilege-escalation-via-cookies-alt-svc-hsts-file-permissions-38672	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2022.5300	Trust: 0.6
url:	https://packetstormsecurity.com/files/170166/red-hat-security-advisory-2022-8840-01.html	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2022.6333	Trust: 0.6
url:	https://cxsecurity.com/cveshow/cve-2022-32207/	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2022.3117	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2022-32208	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2022-32205	Trust: 0.3
url:	https://listman.redhat.com/mailman/listinfo/rhsa-announce	Trust: 0.3
url:	https://access.redhat.com/security/cve/cve-2022-32206	Trust: 0.3
url:	https://access.redhat.com/articles/11258	Trust: 0.3
url:	https://access.redhat.com/security/cve/cve-2022-32207	Trust: 0.3
url:	https://access.redhat.com/security/team/contact/	Trust: 0.3
url:	https://access.redhat.com/security/cve/cve-2022-32208	Trust: 0.3
url:	https://bugzilla.redhat.com/):	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2022-32221	Trust: 0.3
url:	https://access.redhat.com/errata/rhsa-2022:6157	Trust: 0.2
url:	https://ubuntu.com/security/notices/usn-5495-1	Trust: 0.2
url:	https://access.redhat.com/security/team/key/	Trust: 0.2
url:	https://access.redhat.com/security/updates/classification/#moderate	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-27782	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-27775	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2021-22947	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-27774	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-27781	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2021-22946	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-27776	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-22576	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2021-22945	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-28614	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-23943	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-22721	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-26377	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-30522	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-31813	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-42915	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-28615	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-42916	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-22721	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-35252	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-31813	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-2068	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-28614	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-28330	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-1292	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-28615	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-2068	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-28330	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-26377	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-1292	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-23943	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-30522	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-32221	Trust: 0.2
url:	https://cwe.mitre.org/data/definitions/276.html	Trust: 0.1
url:	https://github.com/live-hack-cve/cve-2022-32207	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/curl/7.74.0-1.3ubuntu2.3	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/curl/7.68.0-1ubuntu2.12	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/curl/7.81.0-1ubuntu1.3	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/curl/7.58.0-2ubuntu3.19	Trust: 0.1
url:	https://www.debian.org/security/faq	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-22898	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-22924	Trust: 0.1
url:	https://www.debian.org/security/	Trust: 0.1
url:	https://security-tracker.debian.org/tracker/curl	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2022:8840	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-22922	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2022-27779	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2022-30115	Trust: 0.1
url:	https://security.gentoo.org/	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2022-35260	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-22925	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-22926	Trust: 0.1
url:	https://bugs.gentoo.org.	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2022-27780	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2022-35252	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2022-42916	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2022-42915	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-22923	Trust: 0.1
url:	https://creativecommons.org/licenses/by-sa/2.5	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2022-40674	Trust: 0.1
url:	https://access.redhat.com/security/updates/classification/#important	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2022:8841	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2022-40303	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2022-40304	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2022-37434	Trust: 0.1

CREDITS

Red Hat

Trust: 0.3

sources: PACKETSTORM: 168174 // PACKETSTORM: 170166 // PACKETSTORM: 170165

SOURCES

db:	VULHUB	id:	VHN-424134
db:	VULMON	id:	CVE-2022-32207
db:	JVNDB	id:	JVNDB-2022-015269
db:	PACKETSTORM	id:	167607
db:	PACKETSTORM	id:	168174
db:	PACKETSTORM	id:	169318
db:	PACKETSTORM	id:	170166
db:	PACKETSTORM	id:	170303
db:	PACKETSTORM	id:	170165
db:	CNNVD	id:	CNNVD-202206-2569
db:	NVD	id:	CVE-2022-32207

LAST UPDATE DATE

2024-08-14T12:51:16.480000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-424134	date:	2023-01-05T00:00:00
db:	VULMON	id:	CVE-2022-32207	date:	2023-01-05T00:00:00
db:	JVNDB	id:	JVNDB-2022-015269	date:	2023-09-26T06:16:00
db:	CNNVD	id:	CNNVD-202206-2569	date:	2023-06-30T00:00:00
db:	NVD	id:	CVE-2022-32207	date:	2024-03-27T15:00:46.637

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-424134	date:	2022-07-07T00:00:00
db:	VULMON	id:	CVE-2022-32207	date:	2022-07-07T00:00:00
db:	JVNDB	id:	JVNDB-2022-015269	date:	2023-09-26T00:00:00
db:	PACKETSTORM	id:	167607	date:	2022-06-28T15:26:16
db:	PACKETSTORM	id:	168174	date:	2022-08-25T15:27:31
db:	PACKETSTORM	id:	169318	date:	2022-08-28T19:12:00
db:	PACKETSTORM	id:	170166	date:	2022-12-08T21:28:44
db:	PACKETSTORM	id:	170303	date:	2022-12-19T13:48:31
db:	PACKETSTORM	id:	170165	date:	2022-12-08T21:28:21
db:	CNNVD	id:	CNNVD-202206-2569	date:	2022-06-27T00:00:00
db:	NVD	id:	CVE-2022-32207	date:	2022-07-07T13:15:08.403