Information Disclosure

🗓️ 30 Apr 2022 16:23:47Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 38 Views

curl vulnerability improper security validation credentials acces

Reporter	Title	Published	Views	Family All 188
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in Curl affect PowerSC	23 Sep 202222:05	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data v5.0.3 is vulnerable to multiple Operator package issues	12 Dec 202416:58	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in libcurl may affect IBM Spectrum Copy Data Management (CVE-2022-27782, CVE-2022-27774, CVE-2021-22947, CVE-2022-22576, CVE-2022-27776, CVE-2021-22946)	17 Sep 202202:05	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in libcurl may affect IBM Spectrum Protect Plus (CVE-2021-22946, CVE-2022-27782, CVE-2022-27774, CVE-2022-22576, CVE-2021-22947, CVE-2022-27776)	17 Sep 202212:04	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in libcURL affect IBM Rational ClearCase ( CVE-2022-27778, CVE-2022-27779, CVE-2022-27780, CVE-2022-27782, CVE-2022-30115, CVE-2022-27774 )	25 Jul 202214:49	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar WinCollect is vulnerable to using components with known vulnerabilities	17 Jun 202218:45	–	ibm
IBM Security Bulletins	Security Bulletin: IBM MQ Operator and Queue manager container images are vulnerable to multiple vulnerabilities from Golang Go, libxml2, curl, expat, libgcrypt and IBM WebSphere Application Server Liberty	9 Aug 202205:46	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOps	26 Mar 202502:21	–	ibm
IBM Security Bulletins	Security Bulletin: Netcool Operations Insight v1.6.7 contains fixes for multiple security vulnerabilities.	15 Dec 202209:13	–	ibm
IBM Security Bulletins	Security Bulletin: IBM MaaS360 Cloud Extender Agent and Base Module use libcurl with multiple known vulnerabilities	6 Oct 202204:10	–	ibm

Vulners

Node

google bionicMatch7.58.0-2ubuntu3.15debian

AND

google bionicMatch7.58.0-2ubuntu3.10debian

AND

google bionicMatch7.58.0-2ubuntu3debian

AND

debian debian_linux

focal focalMatch7.68.0-1ubuntu2.7debian

AND

focal focalMatch7.68.0-1ubuntu2.2debian

AND

focal focalMatch7.68.0-1ubuntu2debian

AND

debian debian_linux

curl curlMatch7.72.0-1debian

AND

debian debian_linuxMatch999

curl curlMatch7.68.0-r0os

AND

curl curlMatch7.80.0-r0os

AND

curl curlMatch7.77.0-r1os

AND

curl curlMatch7.69.1-r0os

AND

curl curlMatch7.79.0-r0os

AND

curl curlMatch7.69.0-r0os

AND

curl curlMatch7.78.0-r0os

AND

curl curlMatch7.79.1-r0os

AND

curl curlMatch7.69.0-r1os

AND

curl curlMatch7.76.1-r0os

AND

curl curlMatch7.75.0-r0os

AND

curl curlMatch7.78.0-r2os

AND

curl curlMatch7.82.0-r0os

AND

curl curlMatch7.77.0-r0os

AND

curl curlMatch7.76.0-r0os

AND

curl curlMatch7.81.0-r0os

AND

curl curlMatch7.81.0-r1os

AND

alpinelinux alpine_linuxMatchedge

curl curlMatch7.76.1-r0os

AND

curl curlMatch7.79.0-r0os

AND

curl curlMatch7.78.0-r0os

AND

curl curlMatch7.69.1-r0os

AND

curl curlMatch7.69.1-r3os

AND

curl curlMatch7.77.0-r0os

AND

curl curlMatch7.79.1-r0os

AND

alpinelinux alpine_linuxMatch3.12

curl curlMatch7.79.1-r0os

AND

curl curlMatch7.80.0-r0os

AND

alpinelinux alpine_linuxMatch3.15

curl curlMatch7.79.0-r0os

AND

curl curlMatch7.76.1-r0os

AND

curl curlMatch7.77.0-r1os

AND

curl curlMatch7.77.0-r0os

AND

curl curlMatch7.74.0-r1os

AND

curl curlMatch7.78.0-r0os

AND

curl curlMatch7.79.1-r0os

AND

alpinelinux alpine_linuxMatch3.13

curl curlMatch7.77.0-r0os

AND

curl curlMatch7.77.0-r1os

AND

curl curlMatch7.79.0-r0os

AND

curl curlMatch7.79.1-r0os

AND

curl curlMatch7.78.0-r0os

AND

alpinelinux alpine_linuxMatch3.14

devel develMatch7.74.0-1ubuntu1debian

AND

devel develMatch7.68.0-1ubuntu4debian

AND

devel develMatch7.72.0-1ubuntu1debian

AND

debian debian_linux

curl curlMatch7.74.0-1.3+b1debian

AND

curl curlMatch7.72.0-1debian

AND

debian debian_linuxMatch11

curl curlMatch7.64.0-4+deb10u2debian

AND

curl curlMatch7.64.0-4+deb10u1debian

AND

debian debian_linuxMatch10

curl curlMatch7.61.1_18.el8_4.1

curl curlMatch7.19.7_52.el6

curl curlMatch7.19.7_26.el6

curl curlMatch7.61.1_8.el8

curl curlMatch7.29.0_54.el7

curl curlMatch7.61.1_17.el8

curl curlMatch7.29.0_59.el7_9.1

curl curlMatch7.61.1_12.el8

curl curlMatch7.29.0_51.el7_6.3

curl curlMatch7.29.0_54.el7_7.1

curl curlMatch7.19.7_26.el6_1.1

curl curlMatch7.19.7_53.el6_9

curl curlMatch7.19.7_40.el6_6.3

curl curlMatch7.29.0_32.el7

curl curlMatch7.19.7_40.el6_6.1

curl curlMatch7.19.7_37.el6_4

curl curlMatch7.61.1_11.el8

curl curlMatch7.61.1_14.el8

curl curlMatch7.19.7_26.el6_1.2

curl curlMatch7.29.0_57.el7

curl curlMatch7.19.7_16.el6

curl curlMatch7.19.7_40.el6_6.4

curl curlMatch7.19.7_35.el6

curl curlMatch7.61.1_18.el8

curl curlMatch7.29.0_46.el7

curl curlMatch7.19.7_54.el6_10

curl curlMatch7.29.0_51.el7

curl curlMatch7.19.7_37.el6_5.3

curl curlMatch7.29.0_59.el7

curl curlMatch7.29.0_57.el7_8.1

curl curlMatch7.19.7_26.el6_2.4

curl curlMatch7.61.1_21.el8

curl curlMatch7.61.1_14.el8_3.1

curl curlMatch7.19.7_36.el6_4

curl curlMatch7.19.7_46.el6

curl curlMatch7.29.0_54.el7_7.2

Source	Link
lists	www.lists.debian.org/debian-lts-announce/2023/01/msg00028.html
git	www.git//git.launchpad.net/ubuntu-cve-tracker/tree/active/CVE-2022-27774
debian	www.debian.org/security/2022/dsa-5197
security	www.security.gentoo.org/glsa/202212-01
hackerone	www.hackerone.com/reports/1543773
security	www.security.netapp.com/advisory/ntap-20220609-0008/

27 Mar 2024 17:13Current

4.5Medium risk

Vulners AI Score4.5

CVSS 23.5

CVSS 3.15.7

EPSS0.00306