CVE-2022-35252

When curl is used to retrieve and parse cookies from a HTTP(S) server, itaccepts cookies using control codes that when later are sent back to a HTTPserver might make the server return 400 responses. Effectively allowing a"sister site" to deny service to all siblings.
References
Link Resource
http://seclists.org/fulldisclosure/2023/Jan/20 Mailing List Third Party Advisory
http://seclists.org/fulldisclosure/2023/Jan/21 Mailing List Third Party Advisory
https://hackerone.com/reports/1613943 Exploit Issue Tracking Third Party Advisory
https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html Mailing List Third Party Advisory
https://security.gentoo.org/glsa/202212-01 Third Party Advisory
https://security.netapp.com/advisory/ntap-20220930-0005/ Third Party Advisory
https://support.apple.com/kb/HT213603 Third Party Advisory
https://support.apple.com/kb/HT213604 Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:haxx:curl:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:element_software:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:netapp:bootstrap_os:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*

Configuration 8 (hide)

OR cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Configuration 9 (hide)

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Configuration 10 (hide)

OR cpe:2.3:a:splunk:universal_forwarder:*:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:*:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:9.1.0:*:*:*:*:*:*:*

History

27 Mar 2024, 15:00

Type Values Removed Values Added
CPE cpe:2.3:a:splunk:universal_forwarder:9.1.0:*:*:*:*:*:*:*
cpe:2.3:a:splunk:universal_forwarder:*:*:*:*:*:*:*:*
First Time Splunk universal Forwarder
Splunk
References () http://seclists.org/fulldisclosure/2023/Jan/20 - Third Party Advisory () http://seclists.org/fulldisclosure/2023/Jan/20 - Mailing List, Third Party Advisory
References () http://seclists.org/fulldisclosure/2023/Jan/21 - Third Party Advisory () http://seclists.org/fulldisclosure/2023/Jan/21 - Mailing List, Third Party Advisory

01 Mar 2023, 18:09

Type Values Removed Values Added
CPE cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
References
  • (FULLDISC) http://seclists.org/fulldisclosure/2023/Jan/20 - Third Party Advisory
  • (MLIST) https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html - Mailing List, Third Party Advisory
  • (CONFIRM) https://support.apple.com/kb/HT213603 - Third Party Advisory
  • (CONFIRM) https://support.apple.com/kb/HT213604 - Third Party Advisory
  • (FULLDISC) http://seclists.org/fulldisclosure/2023/Jan/21 - Third Party Advisory
References (GENTOO) https://security.gentoo.org/glsa/202212-01 - (GENTOO) https://security.gentoo.org/glsa/202212-01 - Third Party Advisory

19 Dec 2022, 04:15

Type Values Removed Values Added
References
  • (GENTOO) https://security.gentoo.org/glsa/202212-01 -

07 Oct 2022, 13:20

Type Values Removed Values Added
New CVE

Information

Published : 2022-09-23 14:15

Updated : 2024-03-27 15:00


NVD link : CVE-2022-35252

Mitre link : CVE-2022-35252

CVE.ORG link : CVE-2022-35252


JSON object : View

Products Affected

netapp

  • h700s_firmware
  • h700s
  • h410s_firmware
  • h300s
  • solidfire
  • h500s
  • hci_management_node
  • element_software
  • clustered_data_ontap
  • h410s
  • h500s_firmware
  • h300s_firmware
  • bootstrap_os
  • hci_compute_node

debian

  • debian_linux

splunk

  • universal_forwarder

haxx

  • curl

apple

  • macos
CWE
NVD-CWE-noinfo CWE-20

Improper Input Validation