CVE-2022-27774 vulnerability in Canonical and Other Products
Published on June 2, 2022

An insufficiently protected credentials vulnerability exists in curl 4.9 to and include curl 7.82.0 are affected that could allow an attacker to extract credentials when follows HTTP(S) redirects is used with authentication could leak credentials to other services that exist on different protocols or port numbers.

Vendor Advisory Vendor Advisory NVD

Vulnerability Analysis

CVE-2022-27774 is exploitable with network access, requires user interaction and a small amount of user privileges. This vulnerability is considered to have a low attack complexity. Public availability of a proof of concept (POC) exploit exists for CVE-2022-27774. The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality, with no impact on integrity and availability.

Attack Vector:

NETWORK

Attack Complexity:

LOW

Privileges Required:

LOW

User Interaction:

REQUIRED

Scope:

UNCHANGED

Confidentiality Impact:

HIGH

Integrity Impact:

NONE

Availability Impact:

NONE

Weakness Type

Insufficiently Protected Credentials

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

Products Associated with CVE-2022-27774

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2022-27774 are published in these products:

Canonical Ubuntu Linux

Haxx Curl

Debian Linux

NetApp Clustered Data Ontap

NetApp Solidfire Hci Management Node

NetApp Solidfire Hci Storage Node

Brocade Fabric Operating System

Splunk Universal Forwarder

Exploit Probability

EPSS

0.31%

Percentile

53.85%