CVE-2022-27780

Summary

The curl URL parser wrongly accepts percent-encoded URL separators like '/'when decoding the host name part of a URL, making it a different URL usingthe wrong host name when it is later retrieved.For example, a URL like http://example.com%2F127.0.0.1/, would be allowed bythe parser and get transposed into http://example.com/127.0.0.1/. This flawcan be used to circumvent filters, checks and more.

Affected Software

VendorProductVersion RangeStatus
n/ahttps://github.com/curl/curlFixed in 7.83.1affected

Weaknesses

  • CWE-177: Improper Handling of URL Encoding (Hex Encoding) (CWE-177)

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: yes
    • Technical Impact: partial

References