Vulnerabilities > CVE-2022-27780 - Server-Side Request Forgery (SSRF) vulnerability in multiple products

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

NVD

Published: 2022-06-02

Updated: 2024-08-07

Summary

The curl URL parser wrongly accepts percent-encoded URL separators like '/'when decoding the host name part of a URL, making it a *different* URL usingthe wrong host name when it is later retrieved.For example, a URL like `http://example.com%2F127.0.0.1/`, would be allowed bythe parser and get transposed into `http://example.com/127.0.0.1/`. This flawcan be used to circumvent filters, checks and more.

Vulnerable Configurations

Part	Description	Count
Application	Haxx Haxx Curl 7.80.0 Haxx Curl 7.81.0 Haxx Curl 7.82.0 Haxx Curl 7.83.0	4
Application	Netapp Netapp Clustered Data Ontap - Netapp Solidfire & HCI Management Node - Netapp Solidfire, Enterprise SDS & HCI Storage Node -	3
Application	Splunk Splunk Universal Forwarder 9.1.0 Splunk Universal Forwarder 9.0.0 Splunk Universal Forwarder 9.0.1 Splunk Universal Forwarder 9.0.2 Splunk Universal Forwarder 9.0.3 Splunk Universal Forwarder 9.0.4 Splunk Universal Forwarder 9.0.5 Splunk Universal Forwarder 8.2.0 Splunk Universal Forwarder 8.2.6 Splunk Universal Forwarder 8.2.7 Splunk Universal Forwarder 8.2.8 Splunk Universal Forwarder 8.2.9 Splunk Universal Forwarder 8.2.10 Splunk Universal Forwarder 8.2.11	14
OS	Netapp Netapp HCI Bootstrap OS - Netapp H410S Firmware - Netapp H700S Firmware - Netapp H500S Firmware - Netapp H300S Firmware -	5
Hardware	Netapp Netapp HCI Compute Node - Netapp H410S - Netapp H700S - Netapp H500S - Netapp H300S -	5

Common Weakness Enumeration (CWE)

CWE-918 - Server-Side Request Forgery (SSRF)

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References