SNS: Vulnerability in curl library (CVE 2021-22924)
| Advisory ID | CVE Number | Date discovered | Severity | Advisory revision |
|---|---|---|---|---|
| STORM-2021-048 | CVE 2021-22924 | 07/23/2021 | medium | v2 |
Vulnerability details
A vulnerability in libcurl can lead to undefined behavior.
Impacted products
| Products | Severity | Detail |
|---|---|---|
| Stormshield Network Security | medium | SNS is impacted |
Revisions
| Version | Date | Description |
|---|---|---|
| v1 | 10/06/2021 | Reserved Publication |
| v2 | 02/18/2022 | Updated and disclosed |
Stormshield Network Security |
CVSS v3.1 Overall Score: 5.1
|
Analysis |
Impacted version |
|
A vulnerability in libcurl can lead to undefined behavior. Libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse. The config matching function did not take ‘issuer cert’ into account and it compared the involved paths case insensitively, which could lead to libcurl reusing wrong connections. |
|
Workaround solution |
Solution |
|
There is no workaround. |
The vulnerability is fixed in versions
|
| Attack Vector | Attack Complexity | Privileges Required | User Interaction | Scope | Confidentiality Impact | Integrity Impact | Availability impact |
|---|---|---|---|---|---|---|---|
| Network | High | None | None | Unchanged | None | Low | Low |
| CVSS Base score: 4.8 | CVSS Vector: (AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L) |
| Exploit Code Maturity | Remediation Level | Report Confidence |
|---|---|---|
| Unproven that exploit exists | Official fix | Confirmed |
| CVSS Temporal score: 4.2 | CVSS Vector: (AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L/E:U/RL:O/RC:C) |
| Confidentiality Requirement | Integrity Requirement | Availability Requirement |
|---|---|---|
| High | High | High |
| CVSS Environmental score: 5.1 | CVSS Vector: (AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L/E:U/RL:O/RC:C/CR:H/IR:H/AR:H/MAV:X/MAC:X/MPR:X/MUI:X/MS:X/MC:X/MI:X/MA:X) |