SNS: Vulnerability in curl library (CVE 2021-22924)

Advisory ID CVE Number Date discovered Severity Advisory revision
STORM-2021-048 CVE 2021-22924 07/23/2021 medium v2

Vulnerability details

A vulnerability in libcurl can lead to undefined behavior.

Impacted products

ProductsSeverityDetail
Stormshield Network Security medium SNS is impacted

Revisions

Version Date Description
v1 10/06/2021 Reserved Publication
v2 02/18/2022 Updated and disclosed

 



Stormshield Network Security

CVSS v3.1 Overall Score: 5.1      

Analysis

Impacted version

A vulnerability in libcurl can lead to undefined behavior.

Libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse. The config matching function did not take ‘issuer cert’ into account and it compared the involved paths case insensitively, which could lead to libcurl reusing wrong connections.

  • SNS 2.0.0 to 2.7.9
  • SNS 2.8.0 to 2.16.0
  • SNS 3.0.0 to 3.7.20
  • SNS 3.8.0 to 3.11.8
  • SNS 4.0.0 to 4.2.4

Workaround solution

Solution

There is no workaround.

The vulnerability is fixed in versions

  • 3.7.21
  • 3.11.9
  • 4.2.5


Attack Vector Attack Complexity Privileges Required User Interaction Scope Confidentiality Impact Integrity Impact Availability impact
Network High None None Unchanged None Low Low
CVSS Base score: 4.8 CVSS Vector: (AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L)
Exploit Code Maturity Remediation Level Report Confidence
Unproven that exploit exists Official fix Confirmed
CVSS Temporal score: 4.2 CVSS Vector: (AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L/E:U/RL:O/RC:C)
Confidentiality Requirement Integrity Requirement Availability Requirement
High High High
CVSS Environmental score: 5.1 CVSS Vector: (AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L/E:U/RL:O/RC:C/CR:H/IR:H/AR:H/MAV:X/MAC:X/MPR:X/MUI:X/MS:X/MC:X/MI:X/MA:X)