Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2022-27776

Опубликовано: 02 июн. 2022
Источник: debian
EPSS Низкий

Описание

A insufficiently protected credentials vulnerability in fixed in curl 7.83.0 might leak authentication or cookie header data on HTTP redirects to the same host but another port number.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
curlfixed7.83.0-1package

Примечания

  • https://curl.se/docs/CVE-2022-27776.html

  • Fixed by: https://github.com/curl/curl/commit/6e659993952aa5f90f48864be84a1bbb047fc258 (curl-7_83_0)

EPSS

Процентиль: 67%
0.00557
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2022-27776

CVSS3: 6.5
ubuntu
около 3 лет назад

A insufficiently protected credentials vulnerability in fixed in curl 7.83.0 might leak authentication or cookie header data on HTTP redirects to the same host but another port number.

redhat логотип

CVE-2022-27776

CVSS3: 4.3
redhat
около 3 лет назад

A insufficiently protected credentials vulnerability in fixed in curl 7.83.0 might leak authentication or cookie header data on HTTP redirects to the same host but another port number.

nvd логотип

CVE-2022-27776

CVSS3: 6.5
nvd
около 3 лет назад

A insufficiently protected credentials vulnerability in fixed in curl 7.83.0 might leak authentication or cookie header data on HTTP redirects to the same host but another port number.

msrc логотип

CVE-2022-27776

msrc
почти 3 года назад

HackerOne: CVE-2022-27776 Insufficiently protected credentials vulnerability might leak authentication or cookie header data

github логотип

GHSA-hc85-wpv5-52wh

CVSS3: 6.5
github
около 3 лет назад

A insufficiently protected credentials vulnerability in fixed in curl 7.83.0 might leak authentication or cookie header data on HTTP redirects to the same host but another port number.

EPSS

Процентиль: 67%
0.00557
Низкий