Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2021-22925

Опубликовано: 05 авг. 2021
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 5
CVSS3: 5.3

Описание

curl supports the -t command line option, known as CURLOPT_TELNETOPTIONSin libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending NEW_ENV variables, libcurlcould be made to pass on uninitialized data from a stack based buffer to theserver. Therefore potentially revealing sensitive internal information to theserver using a clear-text network protocol.This could happen because curl did not call and use sscanf() correctly whenparsing the string provided by the application.

РелизСтатусПримечание
bionic

released

7.58.0-2ubuntu3.14
devel

released

7.74.0-1.2ubuntu4
esm-infra-legacy/trusty

not-affected

7.35.0-1ubuntu2.20+esm14
esm-infra/bionic

not-affected

7.58.0-2ubuntu3.14
esm-infra/focal

not-affected

7.68.0-1ubuntu2.6
esm-infra/xenial

released

7.47.0-1ubuntu2.19+esm3
focal

released

7.68.0-1ubuntu2.6
groovy

ignored

end of life
hirsute

released

7.74.0-1ubuntu2.1
impish

released

7.74.0-1.2ubuntu4

Показывать по

Ссылки на источники

EPSS

Процентиль: 60%
0.00406
Низкий

5 Medium

CVSS2

5.3 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2021-22925

CVSS3: 3.1
redhat
около 4 лет назад

curl supports the `-t` command line option, known as `CURLOPT_TELNETOPTIONS`in libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending `NEW_ENV` variables, libcurlcould be made to pass on uninitialized data from a stack based buffer to theserver. Therefore potentially revealing sensitive internal information to theserver using a clear-text network protocol.This could happen because curl did not call and use sscanf() correctly whenparsing the string provided by the application.

nvd логотип

CVE-2021-22925

CVSS3: 5.3
nvd
около 4 лет назад

curl supports the `-t` command line option, known as `CURLOPT_TELNETOPTIONS`in libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending `NEW_ENV` variables, libcurlcould be made to pass on uninitialized data from a stack based buffer to theserver. Therefore potentially revealing sensitive internal information to theserver using a clear-text network protocol.This could happen because curl did not call and use sscanf() correctly whenparsing the string provided by the application.

debian логотип

CVE-2021-22925

CVSS3: 5.3
debian
около 4 лет назад

curl supports the `-t` command line option, known as `CURLOPT_TELNETOP ...

rocky логотип

RLSA-2021:4511

rocky
больше 3 лет назад

Moderate: curl security and bug fix update

github логотип

GHSA-rjqf-6h27-xqfp

CVSS3: 5.3
github
около 3 лет назад

curl supports the `-t` command line option, known as `CURLOPT_TELNETOPTIONS`in libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending `NEW_ENV` variables, libcurlcould be made to pass on uninitialized data from a stack based buffer to theserver. Therefore potentially revealing sensitive internal information to theserver using a clear-text network protocol.This could happen because curl did not call and use sscanf() correctly whenparsing the string provided by the application.

EPSS

Процентиль: 60%
0.00406
Низкий

5 Medium

CVSS2

5.3 Medium

CVSS3