Lucene search

F5F5:K000133092

HistoryMar 21, 2023 - 12:00 a.m.

K000133092: cURL vulnerability CVE-2022-43552

2023-03-2100:00:00

my.f5.com

curl

vulnerability

cve-2022-43552

use after free

http proxy

smb

telnet

memory

terminate

7.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.9%

JSON

Security Advisory Description

A use after free vulnerability exists in curl <7.87.0. Curl can be asked to tunnel virtually all protocols it supports through an HTTP proxy. HTTP proxies can (and often do) deny such tunnel operations. When getting denied to tunnel the specific protocols SMB or TELNET, curl would use a heap-allocated struct after it had been freed, in its transfer shutdown code path. (CVE-2022-43552)

Impact

Referencing memory after it has been freed can cause a program to terminate, use unexpected values, or execute code.

Affected configurations

Vulners

Node

f5big\-ip_nextMatch1.5.0

f5big\-ip_nextMatch1.6.0

f5big\-ip_nextMatch1.7.0

f5big\-ipMatch13.1.0

f5big\-ipMatch13.1.1

f5big\-ipMatch13.1.3

f5big\-ipMatch13.1.4

f5big\-ipMatch13.1.5

f5big\-ipMatch14.1.0

f5big\-ipMatch14.1.2

f5big\-ipMatch14.1.3

f5big\-ipMatch14.1.4

f5big\-ipMatch14.1.5

f5big\-ipMatch15.1.0

f5big\-ipMatch15.1.1

f5big\-ipMatch15.1.2

f5big\-ipMatch15.1.3

f5big\-ipMatch15.1.4

f5big\-ipMatch15.1.5

f5big\-ipMatch15.1.6

f5big\-ipMatch15.1.7

f5big\-ipMatch15.1.8

f5big\-ip_afmMatch13.1.0

f5big\-ip_afmMatch13.1.1

f5big\-ip_afmMatch13.1.3

f5big\-ip_afmMatch13.1.4

f5big\-ip_afmMatch13.1.5

f5big\-ip_afmMatch14.1.0

f5big\-ip_afmMatch14.1.2

f5big\-ip_afmMatch14.1.3

f5big\-ip_afmMatch14.1.4

f5big\-ip_afmMatch14.1.5

f5big\-ip_afmMatch15.1.0

f5big\-ip_afmMatch15.1.1

f5big\-ip_afmMatch15.1.2

f5big\-ip_afmMatch15.1.3

f5big\-ip_afmMatch15.1.4

f5big\-ip_afmMatch15.1.5

f5big\-ip_afmMatch15.1.6

f5big\-ip_afmMatch15.1.7

f5big\-ip_afmMatch15.1.8

f5big\-ip_afmMatch16.1.0

f5big\-ip_afmMatch16.1.1

f5big\-ip_afmMatch16.1.2

f5big\-ip_afmMatch16.1.3

f5big\-ip_afmMatch17.0.0

f5big\-ip_afmMatch17.1.0

f5big\-ip_analyticsMatch13.1.0

f5big\-ip_analyticsMatch13.1.1

f5big\-ip_analyticsMatch13.1.3

f5big\-ip_analyticsMatch13.1.4

f5big\-ip_analyticsMatch13.1.5

f5big\-ip_analyticsMatch14.1.0

f5big\-ip_analyticsMatch14.1.2

f5big\-ip_analyticsMatch14.1.3

f5big\-ip_analyticsMatch14.1.4

f5big\-ip_analyticsMatch14.1.5

f5big\-ip_analyticsMatch15.1.0

f5big\-ip_analyticsMatch15.1.1

f5big\-ip_analyticsMatch15.1.2

f5big\-ip_analyticsMatch15.1.3

f5big\-ip_analyticsMatch15.1.4

f5big\-ip_analyticsMatch15.1.5

f5big\-ip_analyticsMatch15.1.6

f5big\-ip_analyticsMatch15.1.7

f5big\-ip_analyticsMatch15.1.8

f5big\-ip_analyticsMatch16.1.0

f5big\-ip_analyticsMatch16.1.1

f5big\-ip_analyticsMatch16.1.2

f5big\-ip_analyticsMatch16.1.3

f5big\-ip_analyticsMatch17.0.0

f5big\-ip_analyticsMatch17.1.0

f5big\-ip_apmMatch13.1.0

f5big\-ip_apmMatch13.1.1

f5big\-ip_apmMatch13.1.3

f5big\-ip_apmMatch13.1.4

f5big\-ip_apmMatch13.1.5

f5big\-ip_apmMatch14.1.0

f5big\-ip_apmMatch14.1.2

f5big\-ip_apmMatch14.1.3

f5big\-ip_apmMatch14.1.4

f5big\-ip_apmMatch14.1.5

f5big\-ip_apmMatch15.1.0

f5big\-ip_apmMatch15.1.1

f5big\-ip_apmMatch15.1.2

f5big\-ip_apmMatch15.1.3

f5big\-ip_apmMatch15.1.4

f5big\-ip_apmMatch15.1.5

f5big\-ip_apmMatch15.1.6

f5big\-ip_apmMatch15.1.7

f5big\-ip_apmMatch15.1.8

f5big\-ip_apmMatch16.1.0

f5big\-ip_apmMatch16.1.1

f5big\-ip_apmMatch16.1.2

f5big\-ip_apmMatch16.1.3

f5big\-ip_apmMatch17.0.0

f5big\-ip_apmMatch17.1.0

f5big\-ip_asmMatch13.1.0

f5big\-ip_asmMatch13.1.1

f5big\-ip_asmMatch13.1.3

f5big\-ip_asmMatch13.1.4

f5big\-ip_asmMatch13.1.5

f5big\-ip_asmMatch14.1.0

f5big\-ip_asmMatch14.1.2

f5big\-ip_asmMatch14.1.3

f5big\-ip_asmMatch14.1.4

f5big\-ip_asmMatch14.1.5

f5big\-ip_asmMatch15.1.0

f5big\-ip_asmMatch15.1.1

f5big\-ip_asmMatch15.1.2

f5big\-ip_asmMatch15.1.3

f5big\-ip_asmMatch15.1.4

f5big\-ip_asmMatch15.1.5

f5big\-ip_asmMatch15.1.6

f5big\-ip_asmMatch15.1.7

f5big\-ip_asmMatch15.1.8

f5big\-ip_asmMatch16.1.0

f5big\-ip_asmMatch16.1.1

f5big\-ip_asmMatch16.1.2

f5big\-ip_asmMatch16.1.3

f5big\-ip_asmMatch17.0.0

f5big\-ip_asmMatch17.1.0

f5big\-ip_dnsMatch13.1.0

f5big\-ip_dnsMatch13.1.1

f5big\-ip_dnsMatch13.1.3

f5big\-ip_dnsMatch13.1.4

f5big\-ip_dnsMatch13.1.5

f5big\-ip_dnsMatch14.1.0

f5big\-ip_dnsMatch14.1.2

f5big\-ip_dnsMatch14.1.3

f5big\-ip_dnsMatch14.1.4

f5big\-ip_dnsMatch14.1.5

f5big\-ip_dnsMatch15.1.0

f5big\-ip_dnsMatch15.1.1

f5big\-ip_dnsMatch15.1.2

f5big\-ip_dnsMatch15.1.3

f5big\-ip_dnsMatch15.1.4

f5big\-ip_dnsMatch15.1.5

f5big\-ip_dnsMatch15.1.6

f5big\-ip_dnsMatch15.1.7

f5big\-ip_dnsMatch15.1.8

f5big\-ip_dnsMatch16.1.0

f5big\-ip_dnsMatch16.1.1

f5big\-ip_dnsMatch16.1.2

f5big\-ip_dnsMatch16.1.3

f5big\-ip_dnsMatch17.0.0

f5big\-ip_dnsMatch17.1.0

f5big\-ipMatch13.1.0

f5big\-ipMatch13.1.1

f5big\-ipMatch13.1.3

f5big\-ipMatch13.1.4

f5big\-ipMatch13.1.5

f5big\-ipMatch14.1.0

f5big\-ipMatch14.1.2

f5big\-ipMatch14.1.3

f5big\-ipMatch14.1.4

f5big\-ipMatch14.1.5

f5big\-ipMatch15.1.0

f5big\-ipMatch15.1.1

f5big\-ipMatch15.1.2

f5big\-ipMatch15.1.3

f5big\-ipMatch15.1.4

f5big\-ipMatch15.1.5

f5big\-ipMatch15.1.6

f5big\-ipMatch15.1.7

f5big\-ipMatch15.1.8

f5big\-ipMatch16.1.0

f5big\-ipMatch16.1.1

f5big\-ipMatch16.1.2

f5big\-ipMatch16.1.3

f5big\-ipMatch17.0.0

f5big\-ipMatch17.1.0

f5big\-ip_link_controllerMatch13.1.0

f5big\-ip_link_controllerMatch13.1.1

f5big\-ip_link_controllerMatch13.1.3

f5big\-ip_link_controllerMatch13.1.4

f5big\-ip_link_controllerMatch13.1.5

f5big\-ip_link_controllerMatch14.1.0

f5big\-ip_link_controllerMatch14.1.2

f5big\-ip_link_controllerMatch14.1.3

f5big\-ip_link_controllerMatch14.1.4

f5big\-ip_link_controllerMatch14.1.5

f5big\-ip_link_controllerMatch15.1.0

f5big\-ip_link_controllerMatch15.1.1

f5big\-ip_link_controllerMatch15.1.2

f5big\-ip_link_controllerMatch15.1.3

f5big\-ip_link_controllerMatch15.1.4

f5big\-ip_link_controllerMatch15.1.5

f5big\-ip_link_controllerMatch15.1.6

f5big\-ip_link_controllerMatch15.1.7

f5big\-ip_link_controllerMatch15.1.8

f5big\-ip_link_controllerMatch16.1.0

f5big\-ip_link_controllerMatch16.1.1

f5big\-ip_link_controllerMatch16.1.2

f5big\-ip_link_controllerMatch16.1.3

f5big\-ip_link_controllerMatch17.0.0

f5big\-ip_link_controllerMatch17.1.0

f5big\-ip_ltmMatch13.1.0

f5big\-ip_ltmMatch13.1.1

f5big\-ip_ltmMatch13.1.3

f5big\-ip_ltmMatch13.1.4

f5big\-ip_ltmMatch13.1.5

f5big\-ip_ltmMatch14.1.0

f5big\-ip_ltmMatch14.1.2

f5big\-ip_ltmMatch14.1.3

f5big\-ip_ltmMatch14.1.4

f5big\-ip_ltmMatch14.1.5

f5big\-ip_ltmMatch15.1.0

f5big\-ip_ltmMatch15.1.1

f5big\-ip_ltmMatch15.1.2

f5big\-ip_ltmMatch15.1.3

f5big\-ip_ltmMatch15.1.4

f5big\-ip_ltmMatch15.1.5

f5big\-ip_ltmMatch15.1.6

f5big\-ip_ltmMatch15.1.7

f5big\-ip_ltmMatch15.1.8

f5big\-ip_ltmMatch16.1.0

f5big\-ip_ltmMatch16.1.1

f5big\-ip_ltmMatch16.1.2

f5big\-ip_ltmMatch16.1.3

f5big\-ip_ltmMatch17.0.0

f5big\-ip_ltmMatch17.1.0

f5big\-ip_pemMatch13.1.0

f5big\-ip_pemMatch13.1.1

f5big\-ip_pemMatch13.1.3

f5big\-ip_pemMatch13.1.4

f5big\-ip_pemMatch13.1.5

f5big\-ip_pemMatch14.1.0

f5big\-ip_pemMatch14.1.2

f5big\-ip_pemMatch14.1.3

f5big\-ip_pemMatch14.1.4

f5big\-ip_pemMatch14.1.5

f5big\-ip_pemMatch15.1.0

f5big\-ip_pemMatch15.1.1

f5big\-ip_pemMatch15.1.2

f5big\-ip_pemMatch15.1.3

f5big\-ip_pemMatch15.1.4

f5big\-ip_pemMatch15.1.5

f5big\-ip_pemMatch15.1.6

f5big\-ip_pemMatch15.1.7

f5big\-ip_pemMatch15.1.8

f5big\-ip_pemMatch16.1.0

f5big\-ip_pemMatch16.1.1

f5big\-ip_pemMatch16.1.2

f5big\-ip_pemMatch16.1.3

f5big\-ip_pemMatch17.0.0

f5big\-ip_pemMatch17.1.0

f5nginx_api_connectivity_managerMatch1.0.0

f5nginx_api_connectivity_managerMatch1.1.0

f5nginx_api_connectivity_managerMatch1.1.1

f5nginx_api_connectivity_managerMatch1.2.0

f5nginx_api_connectivity_managerMatch1.3.0

f5nginx_api_connectivity_managerMatch1.3.1

f5nginx_api_connectivity_managerMatch1.4.0

f5nginx_api_connectivity_managerMatch1.4.1

f5nginx_app_protectMatch1.0.0

f5nginx_app_protectMatch2.0.0

f5nginx_app_protectMatch2.1.0

f5nginx_app_protectMatch2.2.0

f5nginx_app_protectMatch2.3.0

f5nginx_app_protectMatch2.4.0

f5nginx_app_protectMatch3.0.0

f5nginx_app_protectMatch3.1.0

f5nginx_app_protectMatch4.0.1

f5nginx_app_protectMatch3.0.0

f5nginx_app_protectMatch3.1.0

f5nginx_app_protectMatch3.10.0

f5nginx_app_protectMatch3.11.0

f5nginx_app_protectMatch3.12.1

f5nginx_app_protectMatch3.12.2

f5nginx_app_protectMatch3.2.0

f5nginx_app_protectMatch3.3.0

f5nginx_app_protectMatch3.4.0

f5nginx_app_protectMatch3.5.0

f5nginx_app_protectMatch3.6.0

f5nginx_app_protectMatch3.7.0

f5nginx_app_protectMatch3.8.0

f5nginx_app_protectMatch3.9.0

f5nginx_app_protectMatch3.9.1

f5nginx_app_protectMatch4.0.0

f5nginx_app_protectMatch4.1.0

f5nginx_controllerMatch3.15.0

f5nginx_controllerMatch3.16.1

f5nginx_controllerMatch3.17.0

f5nginx_controllerMatch3.18.0

f5nginx_controllerMatch3.18.0-APIM

f5nginx_controllerMatch3.18.1

f5nginx_controllerMatch3.18.1-APIM

f5nginx_controllerMatch3.18.2

f5nginx_controllerMatch3.18.3

f5nginx_controllerMatch3.19.0-APIM

f5nginx_controllerMatch3.19.1-APIM

f5nginx_controllerMatch3.19.2-APIM

f5nginx_controllerMatch3.19.3-APIM

f5nginx_controllerMatch3.19.4-APIM

f5nginx_controllerMatch3.19.5-APIM

f5nginx_controllerMatch3.20.0

f5nginx_controllerMatch3.20.1

f5nginx_controllerMatch3.21.0

f5nginx_controllerMatch3.22.0

f5nginx_controllerMatch3.22.1

f5nginx_controllerMatch3.22.2

f5nginx_controllerMatch3.22.3

f5nginx_controllerMatch3.22.4

f5nginx_controllerMatch3.22.5

f5nginx_controllerMatch3.22.6

f5nginx_controllerMatch3.22.7

f5nginx_controllerMatch3.22.8

f5nginx_ingress_controllerMatch1.10.1

f5nginx_ingress_controllerMatch1.11.0

f5nginx_ingress_controllerMatch1.11.1

f5nginx_ingress_controllerMatch1.11.2

f5nginx_ingress_controllerMatch1.12.0

f5nginx_ingress_controllerMatch1.12.1

f5nginx_ingress_controllerMatch1.12.2

f5nginx_ingress_controllerMatch1.12.3

f5nginx_ingress_controllerMatch1.12.4

f5nginx_ingress_controllerMatch1.12.5

f5nginx_ingress_controllerMatch2.0.0

f5nginx_ingress_controllerMatch2.0.1

f5nginx_ingress_controllerMatch2.0.2

f5nginx_ingress_controllerMatch2.0.3

f5nginx_ingress_controllerMatch2.1.0

f5nginx_ingress_controllerMatch2.1.1

f5nginx_ingress_controllerMatch2.1.2

f5nginx_ingress_controllerMatch2.2.0

f5nginx_ingress_controllerMatch2.2.1

f5nginx_ingress_controllerMatch2.2.2

f5nginx_ingress_controllerMatch2.3.0

f5nginx_ingress_controllerMatch2.4.0

f5nginx_ingress_controllerMatch2.4.1

f5nginx_ingress_controllerMatch2.4.2

f5nginx_ingress_controllerMatch3.0.0

f5nginx_ingress_controllerMatch3.0.1

f5nginx_ingress_controllerMatch3.0.2

f5nginx_instance_managerMatch1.0.0

f5nginx_instance_managerMatch1.0.1

f5nginx_instance_managerMatch1.0.2

f5nginx_instance_managerMatch1.0.3

f5nginx_instance_managerMatch1.0.4

f5nginx_instance_managerMatch2.0.0

f5nginx_instance_managerMatch2.0.1

f5nginx_instance_managerMatch2.1.0

f5nginx_instance_managerMatch2.2.0

f5nginx_instance_managerMatch2.3.0

f5nginx_instance_managerMatch2.3.1

f5nginx_instance_managerMatch2.4.0

f5nginx_instance_managerMatch2.5.0

f5nginx_instance_managerMatch2.5.1

f5nginx_instance_managerMatch2.6.0

f5nginx_instance_managerMatch2.7.0

f5nginx_instance_managerMatch2.8.0

f5nginx_security_monitoringMatch1.0.0

f5nginx_security_monitoringMatch1.1.0

f5nginx_security_monitoringMatch1.2.0

f5nginx_plusMatchR23

f5nginx_plusMatchR24

f5nginx_plusMatchR25

f5nginx_plusMatchR26

f5nginx_plusMatchR27

f5nginx_plusMatchR28

f5nginx_service_meshMatch1.1.0

f5nginx_service_meshMatch1.2.0

f5nginx_service_meshMatch1.2.1

f5nginx_service_meshMatch1.3.0

f5nginx_service_meshMatch1.3.1

f5nginx_service_meshMatch1.4.0

f5nginx_service_meshMatch1.4.1

f5nginx_service_meshMatch1.5.0

f5nginx_service_meshMatch1.6.0

f5nginx_service_meshMatch1.7.0

f5nginxMatch1.22.0

f5nginxMatch1.23.0

f5nginxMatch1.24.0

f5nginxMatch1.25.0

f5nginxMatch1.26.0

f5nginxMatch1.26.1

f5nginxMatch1.27.0

f5nginxMatch1.28.0

f5nginxMatch1.29.0

f5f5os\-aMatch1.3.0

f5f5os\-aMatch1.3.1

f5f5os\-aMatch1.3.2

f5f5os\-aMatch1.4.0

f5f5os\-cMatch1.3.0

f5f5os\-cMatch1.3.1

f5f5os\-cMatch1.3.2

f5f5os\-cMatch1.5.0

f5f5os\-cMatch1.5.1

f5big\-iq_centralized_managementMatch7.1.0

f5big\-iq_centralized_managementMatch8.0.0

f5big\-iq_centralized_managementMatch8.1.0

f5big\-iq_centralized_managementMatch8.2.0

f5big\-ip_ddos_hybrid_defenderMatch14.1.0

f5big\-ip_ddos_hybrid_defenderMatch14.1.2

f5big\-ip_ddos_hybrid_defenderMatch15.1.0

f5big\-ip_ddos_hybrid_defenderMatch15.1.1

f5big\-ip_ddos_hybrid_defenderMatch16.1.0

f5big\-ip_ddos_hybrid_defenderMatch17.0.0

f5big\-ip_ddos_hybrid_defenderMatch17.1.0

f5ssl_orchestratorMatch14.1.0

f5ssl_orchestratorMatch14.1.2

f5ssl_orchestratorMatch14.1.4

f5ssl_orchestratorMatch15.1.0

f5ssl_orchestratorMatch15.1.1

f5ssl_orchestratorMatch16.1.0

f5ssl_orchestratorMatch16.1.1

f5ssl_orchestratorMatch16.1.3

f5ssl_orchestratorMatch17.0.0

f5ssl_orchestratorMatch17.1.0

f5traffix_signaling_delivery_controllerMatch5.1.0

f5traffix_signaling_delivery_controllerMatch5.2.0

CPENameOperatorVersion
big-ip next spkeq1.5.0
big-ip next spkeq1.6.0
big-ip next spkeq1.7.0
big-ip aameq13.1.0
big-ip aameq13.1.1
big-ip aameq13.1.3
big-ip aameq13.1.4
big-ip aameq13.1.5
big-ip aameq14.1.0
big-ip aameq14.1.2

Name	Operator	Version
big-ip next spk	eq	1.5.0
big-ip next spk	eq	1.6.0
big-ip next spk	eq	1.7.0
big-ip aam	eq	13.1.0
big-ip aam	eq	13.1.1
big-ip aam	eq	13.1.3
big-ip aam	eq	13.1.4
big-ip aam	eq	13.1.5
big-ip aam	eq	14.1.0
big-ip aam	eq	14.1.2

Rows per page:

1-10 of 4121