CVE-2022-32205

Exploit

EPSS 1.4%
Published 07.07.2022 13:15:08
Last modified 05.05.2025 17:18:12
Source support@hackerone.com
Teams watchlist Login
Open Login

A malicious server can serve excessive amounts of `Set-Cookie:` headers in a HTTP response to curl and curl < 7.84.0 stores all of them. A sufficiently large amount of (big) cookies make subsequent HTTP requests to this, or other servers to which the cookies match, create requests that become larger than the threshold that curl uses internally to avoid sending crazy large requests (1048576 bytes) and instead returns an error.This denial state might remain for as long as the same cookies are kept, match and haven't expired. Due to cookie matching rules, a server on `foo.example.com` can set cookies that also would match for `bar.example.com`, making it it possible for a "sister server" to effectively cause a denial of service for a sibling site on the same second level domain using this method.

Affected products Warnungen 0 Metrics 4 CWE 1 References 12

Data is provided by the National Vulnerability Database (NVD)

Haxx ≫ Curl Version >= 7.71.0 < 7.84.0

Fedoraproject ≫ Fedora Version35

Debian ≫ Debian Linux Version11.0

Netapp ≫ Clustered Data Ontap Version-

Netapp ≫ Element Software Version-

Netapp ≫ Hci Management Node Version-

Netapp ≫ Solidfire Version-

Netapp ≫ H300s Firmware Version-

Netapp ≫ H300s Version-

Netapp ≫ H500s Firmware Version-

Netapp ≫ H500s Version-

Netapp ≫ H700s Firmware Version-

Netapp ≫ H700s Version-

Netapp ≫ H410s Firmware Version-

Netapp ≫ H410s Version-

Apple ≫ macOS Version < 13.0

Siemens ≫ Scalance Sc622-2c Firmware Version < 3.0

Siemens ≫ Scalance Sc622-2c Version-

Siemens ≫ Scalance Sc626-2c Firmware Version < 3.0

Siemens ≫ Scalance Sc626-2c Version-

Siemens ≫ Scalance Sc632-2c Firmware Version < 3.0

Siemens ≫ Scalance Sc632-2c Version-

Siemens ≫ Scalance Sc636-2c Firmware Version < 3.0

Siemens ≫ Scalance Sc636-2c Version-

Siemens ≫ Scalance Sc642-2c Firmware Version < 3.0

Siemens ≫ Scalance Sc642-2c Version-

Siemens ≫ Scalance Sc646-2c Firmware Version < 3.0

Siemens ≫ Scalance Sc646-2c Version-

Splunk ≫ Universal Forwarder Version >= 8.2.0 < 8.2.12

Splunk ≫ Universal Forwarder Version >= 9.0.0 < 9.0.6

Splunk ≫ Universal Forwarder Version9.1.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.4%	0.798

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.3	2.8	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:N/A:P
134c704f-9b21-4f2e-91b3-4a467353bcc0	4.3	2.8	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

CWE-770 Allocation of Resources Without Limits or Throttling

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

https://www.debian.org/security/2022/dsa-5197

Third Party Advisory

https://security.gentoo.org/glsa/202212-01

Third Party Advisory

http://seclists.org/fulldisclosure/2022/Oct/28

Third Party Advisory

Mailing List

http://seclists.org/fulldisclosure/2022/Oct/41

Third Party Advisory

Mailing List

https://support.apple.com/kb/HT213488

Third Party Advisory