PT-2022-2590 · Curl+11 · Curl+11

Harry Sintonen

·

Published

2022-04-21

·

Updated

2026-05-18

·

CVE-2022-27776

CVSS v3.1

6.5

Medium

VectorAV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions curl versions prior to 7.83.0
Description The issue is related to a insufficiently protected credentials vulnerability that may leak authentication or cookie header data on HTTP redirects to the same host but another port number. This could allow a remote attacker to incorrectly send the same set of headers to hosts that are identical to the first one but use a different port number or URL scheme. The vulnerability affects applications that pass on custom Authorization: or Cookie: headers, which often contain sensitive information.
Recommendations For versions prior to 7.83.0, update to curl 7.83.0 to fix the vulnerability. As a temporary workaround, consider using options that allow users to opt out from the flawed check, but note that this is not set by default. Restrict access to sensitive information and avoid using custom Authorization: or Cookie: headers in HTTP requests until the issue is resolved.

Exploit

Fix

Insufficiently Protected Credentials

Information Disclosure

Weakness Enumeration

CWE-522CWE-200

Related Identifiers

ALSA-2022:5313
ALT-PU-2022-1827
ALT-PU-2022-1877
ALT-PU-2022-1902
ALT-PU-2022-3361
ALT-PU-2024-11168
ALT-PU-2024-1228
BDU:2022-03040
CESA-2022_5313
CLEANSTART-2026-AY18527
CLEANSTART-2026-BW46578
CLEANSTART-2026-DI23929
CLEANSTART-2026-LQ42192
CLEANSTART-2026-OF85770
CVE-2022-27776
DLA-3085-1
DSA-5197-1
MGASA-2022-0159
OESA-2022-1659
OPENSUSE-SU-2022_1657-1
OPENSUSE-SU-2024:12028-1
RHSA-2022:5245
RHSA-2022:5313
RHSA-2022_5245
RHSA-2022_5313
RLSA-2022:5313
SUSE-SU-2022:1657-1
SUSE-SU-2022:1680-1
SUSE-SU-2022_1657-1
SUSE-SU-2022_1680-1
USN-5397-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu
Windows
Curl