CVE-2021-22890 (CNNVD-202103-1709)

MEDIUM
中文标题:
Haxx libcurl 安全漏洞
英文标题:
curl 7.63.0 to and including 7.75.0 includes vulnerability that allows a malicious HTTPS proxy to MI...
CVSS分数: 4.3
发布时间: 2021-04-01 17:46:17
漏洞类型: 其他
状态: PUBLISHED
数据质量分数: 0.30
数据版本: v3
漏洞描述
中文描述:

HAXX Haxx libcurl是瑞典HAXX公司的一个免费、开源的客户端URL传输库。该库支持FTP、FTPS、TFTP、HTTP等。 Haxx libcurl 存在安全漏洞,攻击者可利用该漏洞可以通过会话票证代理主机混淆来充当中间人。

英文描述:

curl 7.63.0 to and including 7.75.0 includes vulnerability that allows a malicious HTTPS proxy to MITM a connection due to bad handling of TLS 1.3 session tickets. When using a HTTPS proxy and TLS 1.3, libcurl can confuse session tickets arriving from the HTTPS proxy but work as if they arrived from the remote server and then wrongly "short-cut" the host handshake. When confusing the tickets, a HTTPS proxy can trick libcurl to use the wrong session ticket resume for the host and thereby circumvent the server TLS certificate check and make a MITM attack to be possible to perform unnoticed. Note that such a malicious HTTPS proxy needs to provide a certificate that curl will accept for the MITMed server for an attack to work - unless curl has been told to ignore the server certificate check.

CWE类型:
CWE-290 CWE-300
标签:
(暂无数据)
受影响产品
厂商 产品 版本 版本范围 平台 CPE
haxx libcurl * - - cpe:2.3:a:haxx:libcurl:*:*:*:*:*:*:*:*
fedoraproject fedora 32 - - cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
fedoraproject fedora 33 - - cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
fedoraproject fedora 34 - - cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
netapp hci_management_node - - - cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*
netapp solidfire - - - cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*
netapp hci_storage_node - - - cpe:2.3:h:netapp:hci_storage_node:-:*:*:*:*:*:*:*
broadcom fabric_operating_system - - - cpe:2.3:o:broadcom:fabric_operating_system:-:*:*:*:*:*:*:*
debian debian_linux 9.0 - - cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
siemens sinec_infrastructure_network_services * - - cpe:2.3:a:siemens:sinec_infrastructure_network_services:*:*:*:*:*:*:*:*
oracle communications_billing_and_revenue_management 12.0.0.3.0 - - cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.3.0:*:*:*:*:*:*:*
oracle essbase 21.2 - - cpe:2.3:a:oracle:essbase:21.2:*:*:*:*:*:*:*
splunk universal_forwarder * - - cpe:2.3:a:splunk:universal_forwarder:*:*:*:*:*:*:*:*
splunk universal_forwarder 9.1.0 - - cpe:2.3:a:splunk:universal_forwarder:9.1.0:*:*:*:*:*:*:*
解决方案
中文解决方案:
(暂无数据)
英文解决方案:
(暂无数据)
临时解决方案:
(暂无数据)
参考链接
无标题 x_refsource_MISC
cve.org
访问
无标题 x_refsource_MISC
cve.org
访问
FEDORA-2021-cab5c9befb vendor-advisory
cve.org
访问
FEDORA-2021-065371f385 vendor-advisory
cve.org
访问
FEDORA-2021-26a293c72b vendor-advisory
cve.org
访问
GLSA-202105-36 vendor-advisory
cve.org
访问
无标题 x_refsource_MISC
cve.org
访问
无标题 x_refsource_CONFIRM
cve.org
访问
无标题 x_refsource_CONFIRM
cve.org
访问
CVSS评分详情
3.1 (adp)
MEDIUM
4.3
CVSS向量: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
机密性
NONE
完整性
LOW
可用性
NONE
时间信息
发布时间:
2021-04-01 17:46:17
修改时间:
2025-06-09 15:11:58
创建时间:
2025-11-11 15:36:39
更新时间:
2025-11-11 15:56:39
利用信息
暂无可利用代码信息
数据源详情
数据源 记录ID 版本 提取时间
CVE cve_CVE-2021-22890 2025-11-11 15:20:49 2025-11-11 07:36:39
NVD nvd_CVE-2021-22890 2025-11-11 14:57:35 2025-11-11 07:45:00
CNNVD cnnvd_CNNVD-202103-1709 2025-11-11 15:10:36 2025-11-11 07:56:39
版本与语言
当前版本: v3
主要语言: EN
支持语言:
EN ZH
安全公告
暂无安全公告信息
变更历史
v3 CNNVD
2025-11-11 15:56:39
vulnerability_type: 未提取 → 其他; cnnvd_id: 未提取 → CNNVD-202103-1709; data_sources: ['cve', 'nvd'] → ['cnnvd', 'cve', 'nvd']
查看详细变更
  • vulnerability_type: 未提取 -> 其他
  • cnnvd_id: 未提取 -> CNNVD-202103-1709
  • data_sources: ['cve', 'nvd'] -> ['cnnvd', 'cve', 'nvd']
v2 NVD
2025-11-11 15:45:00
affected_products_count: 0 → 14; data_sources: ['cve'] → ['cve', 'nvd']
查看详细变更
  • affected_products_count: 0 -> 14
  • data_sources: ['cve'] -> ['cve', 'nvd']