Lucene search

[email protected]NVD:CVE-2021-22925

HistoryAug 05, 2021 - 9:15 p.m.

CVE-2021-22925

2021-08-0521:15:11

CWE-200

CWE-908

[email protected]

web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

0.003 Low

EPSS

Percentile

69.5%

JSON

curl supports the -t command line option, known as CURLOPT_TELNETOPTIONSin libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending NEW_ENV variables, libcurlcould be made to pass on uninitialized data from a stack based buffer to theserver. Therefore potentially revealing sensitive internal information to theserver using a clear-text network protocol.This could happen because curl did not call and use sscanf() correctly whenparsing the string provided by the application.

Affected configurations

NVD

Node

haxxcurlRange7.7–7.78.0

Node

fedoraprojectfedoraMatch33

Node

netappcloud_backupMatch-

netappclustered_data_ontapMatch-

netapphci_management_nodeMatch-

netappsolidfireMatch-

Node

applemac_os_xMatch10.15.7-

applemac_os_xMatch10.15.7security_update_2021-001

applemac_os_xMatch10.15.7security_update_2021-002

applemac_os_xMatch10.15.7security_update_2021-003

applemac_os_xMatch10.15.7security_update_2021-004

applemacosMatch11.0

applemacosMatch11.0.1

applemacosMatch11.1

applemacosMatch11.1.0

applemacosMatch11.2

applemacosMatch11.2.1

applemacosMatch11.3

applemacosMatch11.3.1

applemacosMatch11.4

applemacosMatch11.5

Node

oraclemysql_serverRange5.7.0–5.7.35

oraclemysql_serverRange8.0.0–8.0.26

oraclepeoplesoft_enterprise_peopletoolsMatch8.57

oraclepeoplesoft_enterprise_peopletoolsMatch8.58

oraclepeoplesoft_enterprise_peopletoolsMatch8.59

Node

siemenssinec_infrastructure_network_servicesRange<1.0.1.1

siemenssinema_remote_connect_serverRange<3.1

Node

netapph300s_firmwareMatch-

AND

netapph300sMatch-

Node

netapph500s_firmwareMatch-

AND

netapph500sMatch-

Node

netapph700s_firmwareMatch-

AND

netapph700sMatch-

Node

netapph300e_firmwareMatch-

AND

netapph300eMatch-

Node

netapph500e_firmwareMatch-

AND

netapph500eMatch-

Node

netapph700e_firmwareMatch-

AND

netapph700eMatch-

Node

netapph410s_firmwareMatch-

AND

netapph410sMatch-

Node

splunkuniversal_forwarderRange8.2.0–8.2.12

splunkuniversal_forwarderRange9.0.0–9.0.6

splunkuniversal_forwarderMatch9.1.0

References

seclists.org/fulldisclosure/2021/Sep/39

seclists.org/fulldisclosure/2021/Sep/40

cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf

cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf

hackerone.com/reports/1223882

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/

security.gentoo.org/glsa/202212-01

security.netapp.com/advisory/ntap-20210902-0003/

support.apple.com/kb/HT212804

support.apple.com/kb/HT212805

www.oracle.com/security-alerts/cpujan2022.html

www.oracle.com/security-alerts/cpuoct2021.html

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

0.003 Low

EPSS

Percentile

69.5%

JSON

CVE-2021-22925

Affected configurations

References

Related