PT-2021-5833 · Curl+10 · Curl+10

Published

2021-07-21

·

Updated

2026-05-18

·

CVE-2021-22925

CVSS v3.1

5.3

Medium

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Name of the Vulnerable Software and Affected Versions curl (affected versions not specified)
Description The issue is related to the use of an uninitialized resource in the cURL command-line tool. It affects the -t command line option, also known as CURLOPT TELNETOPTIONS in libcurl, which is used to send variable=content pairs to TELNET servers. Due to a flaw in the option parser for sending NEW ENV variables, libcurl could be made to pass on uninitialized data from a stack-based buffer to the server, potentially revealing sensitive internal information to the server using a clear-text network protocol. This could happen because curl did not call and use sscanf() correctly when parsing the string provided by the application.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Information Disclosure

Use of Uninitialized Resource

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-457CWE-200CWE-908

Related Identifiers

ALSA-2021:4511
ALT-PU-2021-2348
ALT-PU-2021-2856
ALT-PU-2021-2908
ALT-PU-2021-3241
ALT-PU-2021-3666
ALT-PU-2022-2171
ALT-PU-2023-1912
AZL-6363
BDU:2022-00343
CESA-2021_4511
CLEANSTART-2026-AY18527
CLEANSTART-2026-BW46578
CLEANSTART-2026-DI23929
CLEANSTART-2026-LQ42192
CLEANSTART-2026-OF85770
CVE-2021-22925
MGASA-2021-0384
OESA-2021-1321
OPENSUSE-SU-2021:1088-1
OPENSUSE-SU-2021:2439-1
OPENSUSE-SU-2021_1088-1
OPENSUSE-SU-2021_2439-1
RHSA-2021:4511
RHSA-2021_4511
RLSA-2021:4511
SUSE-SU-2021:14768-1
SUSE-SU-2021:2425-1
SUSE-SU-2021:2439-1
SUSE-SU-2021:2440-1
SUSE-SU-2021:2462-1
SUSE-SU-2021_14768-1
USN-5021-1
USN-5021-2
USN-5894-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Apple Macos
Red Hat
Rocky Linux
Suse
Ubuntu
Curl