Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2022-32221

UNKNOWN
Published 2022-12-05T00:00:00
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2022-32221. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

When doing HTTP(S) transfers, libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even when the `CURLOPT_POSTFIELDS` option has been set, if the same handle previously was used to issue a `PUT` request which used that callback. This flaw may surprise the application and cause it to misbehave and either send off the wrong data or use memory after free or similar in the subsequent `POST` request. The problem exists in the logic for a reused handle when it is changed from a PUT to a POST.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed CRITICAL

GHSA-grfr-78m7-q35q

Advisory Details

When doing HTTP(S) transfers, libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even when the `CURLOPT_POSTFIELDS` option has been set, if the same handle previously was used to issue a `PUT` request which used that callback. This flaw may surprise the application and cause it to misbehave and either send off the wrong data or use memory after free or similar in the subsequent `POST` request. The problem exists in the logic for a reused handle when it is changed from a PUT to a POST.

CVSS Scoring

CVSS Score

9.0

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2022-32221
WEB https://hackerone.com/reports/1704017
WEB https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html
WEB https://security.gentoo.org/glsa/202212-01
WEB https://security.netapp.com/advisory/ntap-20230110-0006
WEB https://security.netapp.com/advisory/ntap-20230208-0002
WEB https://support.apple.com/kb/HT213604
WEB https://support.apple.com/kb/HT213605
WEB https://www.debian.org/security/2023/dsa-5330
WEB http://seclists.org/fulldisclosure/2023/Jan/19
WEB http://seclists.org/fulldisclosure/2023/Jan/20
WEB http://www.openwall.com/lists/oss-security/2023/05/17/4

Advisory provided by GitHub Security Advisory Database. Published: December 6, 2022, Modified: March 27, 2024

References

https://hackerone.com/reports/1704017
https://security.gentoo.org/glsa/202212-01
https://security.netapp.com/advisory/ntap-20230110-0006/
https://support.apple.com/kb/HT213604
https://support.apple.com/kb/HT213605
http://seclists.org/fulldisclosure/2023/Jan/20
http://seclists.org/fulldisclosure/2023/Jan/19
https://www.debian.org/security/2023/dsa-5330
https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html
https://security.netapp.com/advisory/ntap-20230208-0002/
http://www.openwall.com/lists/oss-security/2023/05/17/4

HackerOne Reports

CVE-2023-28322: more POST-after-PUT confusion Low
kurohiro
curl
Expected Behavior Violation
View Report
[High] MITM via Insecure CA Path Handling in cURL (--capath, CURLOPT_CAPATH) (CWE-494: Download of Code Without Integrity Check) High
oicus
curl
Reliance on Untrusted Inputs in a Security Decision
View Report
Published: 2022-12-05T00:00:00
Last Modified: 2024-08-03T07:32:56.010Z
Copied to clipboard!