cbcvebase.
CVE-2021-22946
published 2021-09-29

CVE-2021-22946: A user can tell curl >= 7.20.0 and <= 7.78.0 to require a successful upgrade to TLS when speaking to an IMAP, POP3 or FTP server (`--ssl-reqd` on the command…

high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
A user can tell curl >= 7.20.0 and <= 7.78.0 to require a successful upgrade to TLS when speaking to an IMAP, POP3 or FTP server (`--ssl-reqd` on the command line or`CURLOPT_USE_SSL` set to `CURLUSESSL_CONTROL` or `CURLUSESSL_ALL` withlibcurl). This requirement could be bypassed if the server would return a properly crafted but perfectly legitimate response.This flaw would then make curl silently continue its operations **withoutTLS** contrary to the instructions and expectations, exposing possibly sensitive data in clear text over the network.

Affected

44 ranges· showing 25
VendorProductVersion rangeFixed in
applemacos< 12.312.3
applemacos_monterey
debiancurl< curl 7.79.1-1 (bookworm)curl 7.79.1-1 (bookworm)
debiandebian_linux
debiandebian_linux
debiandebian_linux
fedoraprojectfedora
fedoraprojectfedora
haxxcurl>= 0 < 7.74.0-1.3+deb11u27.74.0-1.3+deb11u2
haxxcurl>= 0 < 7.79.1-17.79.1-1
haxxcurl>= 0 < 7.79.1-17.79.1-1
haxxcurl>= 0 < 7.79.1-17.79.1-1
haxxcurl>= 0 < 7.58.0-2ubuntu3.167.58.0-2ubuntu3.16
haxxcurl>= 0 < 7.58.0-2ubuntu3.157.58.0-2ubuntu3.15
haxxcurl>= 0 < 7.68.0-1ubuntu2.77.68.0-1ubuntu2.7
haxxcurl>= 0 < 7.35.0-1ubuntu2.20+esm87.35.0-1ubuntu2.20+esm8
haxxcurl>= 0 < 7.35.0-1ubuntu2.20+esm97.35.0-1ubuntu2.20+esm9
haxxcurl>= 0 < 7.47.0-1ubuntu2.19+esm17.47.0-1ubuntu2.19+esm1
haxxcurl>= 0 < 7.47.0-1ubuntu2.19+esm27.47.0-1ubuntu2.19+esm2
haxxcurl>= 7.20.0 < 7.79.07.79.0
httpsgithub.com_curl_curl
msrccbl2_curl_7.82.0-1_on_cbl_mariner_2.0
msrccm1_curl_7.76.0-6_on_cbl_mariner_1.0
oraclecommerce_guided_search
oraclecommunications_cloud_native_core_binding_support_function

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
osv9.1CRITICAL