CVE-2022-22576 — Improper Authentication in Curl

CWE-287 — Improper Authentication CWE-306 — Missing Authentication for Critical Function CWE-295 — Improper Certificate Validation11 documents9 sources

Severity

8.1HIGHNVD

EPSS

0.3%

top 43.30%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Haxx Curl Splunk Universal Forwarder Https Github.com Curl Curl +1 more

Timeline

PublishedMay 26

Latest updateMar 10

Description

An improper authentication vulnerability exists in curl 7.33.0 to and including 7.82.0 which might allow reuse OAUTH2-authenticated connections without properly making sure that the connection was authenticated with the same credentials as set for this transfer. This affects SASL-enabled protocols: SMPTP(S), IMAP(S), POP3(S) and LDAP(S) (openldap only).

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:NExploitability: 2.8 | Impact: 5.2

Affected Packages5 packages

▶NVDhaxx/curl7.33.0 — 7.83.0

▶Debianhaxx/curl< 7.74.0-1.3+deb11u2+3

▶Ubuntuhaxx/curl< 7.58.0-2ubuntu3.17+2

▶CVEListV5https/github.com_curl_curlFixed in curl 7.83.0

▶NVDsplunk/universal_forwarder8.2.0 — 8.2.12+2

Also affects: Debian Linux 10.0, 11.0

🔴Vulnerability Details

GHSA

GHSA-2r69-696x-qxj9: An improper authentication vulnerability exists in curl 7↗2022-05-27

▶

CVEList

CVE-2022-22576: An improper authentication vulnerability exists in curl 7↗2022-05-26

▶

OSV

CVE-2022-22576: An improper authentication vulnerability exists in curl 7↗2022-05-26

▶

OSV

curl vulnerabilities↗2022-04-28

▶

📋Vendor Advisories

Microsoft

▶

Ubuntu

curl vulnerabilities↗2022-04-28

▶

Red Hat

curl: OAUTH2 bearer bypass in connection re-use↗2022-04-27

▶

Debian

CVE-2022-22576: curl - An improper authentication vulnerability exists in curl 7.33.0 to and including ...↗2022

▶

💬Community

HackerOne

Connection Reuse Ignores OAuth Bearer Token Mismatch↗2026-03-10

▶

HackerOne

CVE-2022-22576: OAUTH2 bearer bypass in connection re-use↗2022-04-29

▶