curl: CVE-2021-22926: CURLOPT_SSLCERT mixup with Secure Transport

🗓️ 15 Jun 2021 15:39:06Reported by nyymiType

libcurl Secure Transport SSL backend fails to secure the `CURLOPT_SSLCERT` against current directory file overriding the keychain nickname specified. Local file can override specified certificate leading to denial of service

Reporter	Title	Published	Views	Family All 253
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to multiple Operator package issues	7 May 202417:05	–	ibm
IBM Security Bulletins	Security Bulletin: Execution Engine for Apache Hadoop is vulnerable to heap-based buffer overflow and remote attacker to bypass security restrictions	20 Feb 202503:40	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in Curl affects IBM Cloud Private and could allow a remote attacker to bypass security restrictions (CVE-2021-22926)	20 May 202213:05	–	ibm
FreeBSD	cURL -- Multiple vulnerabilities	21 Jul 202100:00	–	freebsd
FreeBSD	MySQL -- Multiple vulnerabilities	16 Oct 202100:00	–	freebsd
AlpineLinux	CVE-2021-22926	5 Aug 202100:00	–	alpinelinux
CBLMariner	CVE-2021-22926 affecting package curl 7.76.0-9	6 Nov 202100:29	–	cbl_mariner
CBLMariner	CVE-2021-22926 affecting package curl for versions less than 7.82.0-1	9 Apr 202206:51	–	cbl_mariner
CNNVD	Slackware信任管理问题漏洞	21 Jul 202100:00	–	cnnvd
CVE	CVE-2021-22926	5 Aug 202100:00	–	cve

21 Jul 2021 16:29Current

0.2Low risk

Vulners AI Score0.2

EPSS0.00657

$1000