The curl URL parser wrongly accepts percent-encoded URL separators like '/'when decoding the host name part of a URL, making it a different URL usingthe wrong host name when it is later retrieved.For example, a URL like http://example.com%2F127.0.0.1/
, would be allowed bythe parser and get transposed into http://example.com/127.0.0.1/
. This flawcan be used to circumvent filters, checks and more.
[
{
"cpes": [
"cpe:2.3:a:haxx:curl:*:*:*:*:*:*:*:*"
],
"vendor": "haxx",
"product": "curl",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "7.86.0",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:a:netapp:solidfire_\\&_hci_storage_node:*:*:*:*:*:*:*:*"
],
"vendor": "netapp",
"product": "solidfire_\\&_hci_storage_node",
"versions": [
{
"status": "affected",
"version": "0"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:a:netapp:ontap_9:*:*:*:*:*:*:*:*"
],
"vendor": "netapp",
"product": "ontap_9",
"versions": [
{
"status": "affected",
"version": "0"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:a:netapp:hci_baseboard_management_controller:h300s:*:*:*:*:*:*:*",
"cpe:2.3:a:netapp:hci_baseboard_management_controller:h410s:*:*:*:*:*:*:*",
"cpe:2.3:a:netapp:hci_baseboard_management_controller:h500s:*:*:*:*:*:*:*",
"cpe:2.3:a:netapp:hci_baseboard_management_controller:h700s:*:*:*:*:*:*:*"
],
"vendor": "netapp",
"product": "solidfire_\\&_hci_management_node",
"versions": [
{
"status": "affected",
"version": "h300s"
},
{
"status": "affected",
"version": "h410s"
},
{
"status": "affected",
"version": "h500s"
},
{
"status": "affected",
"version": "h700s"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:netapp:hci_bootstrap_os:*:*:*:*:*:*:*:*"
],
"vendor": "netapp",
"product": "hci_bootstrap_os",
"versions": [
{
"status": "affected",
"version": "0"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:a:netapp:solidfire_\\&_hci_management_node:*:*:*:*:*:*:*:*"
],
"vendor": "netapp",
"product": "solidfire_\\&_hci_management_node",
"versions": [
{
"status": "affected",
"version": "0"
}
],
"defaultStatus": "unknown"
}
]