CVE-2023-27533

A vulnerability in input validation exists in curl <8.0 during communication using the TELNET protocol may allow an attacker to pass on maliciously crafted user name and telnet options during server negotiation. The lack of proper input scrubbing allows an attacker to send content or perform option negotiation without the applications intent. This vulnerability could be exploited if an application allows user input, thereby enabling attackers to execute arbitrary code on the system.

Weakness

The product does not adequately filter user-controlled input for special elements with control implications.

Affected Software

Name	Vendor	Start Version	End Version
Curl	Haxx	7.0.0 (including)	7.881 (including)
JBCS httpd 2.4.51.sp2	RedHat	jbcs-httpd24-curl	*
JBoss Core Services for RHEL 8	RedHat	jbcs-httpd24-curl-0:8.0.1-1.el8jbcs	*
JBoss Core Services on RHEL 7	RedHat	jbcs-httpd24-curl-0:8.0.1-1.el7jbcs	*
Red Hat Enterprise Linux 9	RedHat	curl-0:7.76.1-26.el9	*
Red Hat Enterprise Linux 9	RedHat	curl-0:7.76.1-26.el9	*
Curl	Ubuntu	bionic	*
Curl	Ubuntu	esm-infra-legacy/trusty	*
Curl	Ubuntu	esm-infra/bionic	*
Curl	Ubuntu	esm-infra/focal	*
Curl	Ubuntu	esm-infra/xenial	*
Curl	Ubuntu	focal	*
Curl	Ubuntu	jammy	*
Curl	Ubuntu	kinetic	*
Curl	Ubuntu	lunar	*
Curl	Ubuntu	trusty	*
Curl	Ubuntu	trusty/esm	*
Curl	Ubuntu	upstream	*
Curl	Ubuntu	xenial	*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2023-27533
CWE	https://cwe.mitre.org/data/definitions/75.html

Failure to Sanitize Special Elements into a Different Plane (Special Element Injection)

Weakness

Affected Software

Potential Mitigations

References

CVE-2023-27533

Failure to Sanitize Special Elements into a Different Plane (Special Element Injection)

Weakness

Affected Software

Potential Mitigations

Related Attack Patterns

References