CVE-2022-22576

8.1 HIGH

An improper authentication vulnerability exists in curl 7.33.0 to and including 7.82.0 which might allow reuse OAUTH2-authenticated conne...

Published: 2022-05-26 · Last updated: 2026-05-27

Severity and scoring

CVSS: 8.1 HIGH
Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
CWE: CWE-287, CWE-306

Affected products

Vendor	Product
brocade	bootstrap_os, clustered_data_ontap, curl
debian	bootstrap_os, clustered_data_ontap, curl
haxx	bootstrap_os, clustered_data_ontap, curl
netapp	bootstrap_os, clustered_data_ontap, curl
splunk	bootstrap_os, clustered_data_ontap, curl

Description

An improper authentication vulnerability exists in curl 7.33.0 to and including 7.82.0 which might allow reuse OAUTH2-authenticated connections without properly making sure that the connection was authenticated with the same credentials as set for this transfer. This affects SASL-enabled protocols: SMPTP(S), IMAP(S), POP3(S) and LDAP(S) (openldap only).

Source: NVD

References

[NVD]https://nvd.nist.gov/vuln/detail/CVE-2022-22576
[Exploit reference]https://hackerone.com/reports/1526328
[Other]https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html
[Other]https://security.gentoo.org/glsa/202212-01
[Other]https://security.netapp.com/advisory/ntap-20220609-0008/
[Other]https://www.debian.org/security/2022/dsa-5197
[Exploit reference]https://hackerone.com/reports/1526328
[Other]https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html
[Other]https://security.gentoo.org/glsa/202212-01
[Other]https://security.netapp.com/advisory/ntap-20220609-0008/
[Other]https://www.debian.org/security/2022/dsa-5197
[Exploit reference]https://hackerone.com/reports/1526328

Related CVEs

Same vendor

CVE-2026-20259 — In Splunk Enterprise versions below 10.2.4 and 10.0.7, and Splunk Cloud Platform versions below 10.4.2604.0, 10.3.2512.12, 10.2.2510.15, ... (5.5 MEDIUM)
CVE-2026-20258 — In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, and Splunk Cloud Platform versions below 10.3.2512.11, 10.2.2510.... (7.1 HIGH)
CVE-2026-20257 — In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, and Splunk Cloud Platform versions below 10.3.2512.13, 10.2.2510.... (5.7 MEDIUM)
CVE-2026-20256 — In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, and Splunk Cloud Platform versions below 10.3.2512.13, 10.2.2510.... (5.7 MEDIUM)
CVE-2026-20255 — In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, and Splunk Cloud Platform versions below 10.3.2512.13, 10.2.2510.... (5.7 MEDIUM)

Same CWE

CVE-2026-48780 — Forem is open source software for building communities (8.2 HIGH)
CVE-2026-0647 — An improper authentication security issue exists within the 1794-AENTR adapter's embedded web server
CVE-2026-48114 — Metacat is data repository software that helps researchers preserve, share, and discover data (9.8 CRITICAL)
CVE-2018-25437 — WordPress CherryFramework Themes 3.1.4 contains an information disclosure vulnerability that allows unauthenticated attackers to download... (7.5 HIGH)
CVE-2026-12183 — Nefteprodukttekhnika BUK TS-G Gas Station Automation System 2.9.1 through 2.10.2 on Linux contains an Improper Authentication vulnerabili... (9.8 CRITICAL)