CVE-2019-5443 — HIGH (7.8) — White Hats Nepal

Q: How severe is CVE-2019-5443?

CVE-2019-5443 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2019-5443?

Check the references section above for vendor advisories and patch information. Affected products include: Haxx Curl, Microsoft Windows, Oracle Enterprise Manager Ops Center, Oracle Http Server, Oracle Mysql Server.

Vulnerability Description

A non-privileged user or program can put code and a config file in a known non-privileged path (under C:/usr/local/) that will make curl <= 7.65.1 automatically run the code (as an openssl "engine") on invocation. If that curl is invoked by a privileged user it can do anything it wants.

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Haxx	Curl	<= 7.65.1
Microsoft	Windows	-
Oracle	Enterprise Manager Ops Center	12.3.3
Oracle	Http Server	12.2.1.3.0
Oracle	Mysql Server	>= 5.0.0, <= 5.7.27
Oracle	Oss Support Tools	20.0
Netapp	Oncommand Insight	-
Netapp	Oncommand Unified Manager	>= 7.3
Netapp	Oncommand Workflow Automation	-
Netapp	Snapcenter	-

Related Weaknesses (CWE)

CWE-94 CWE-427

References

http://www.openwall.com/lists/oss-security/2019/06/24/1Mailing ListPatchThird Party Advisory
http://www.securityfocus.com/bid/108881Broken Link
https://curl.haxx.se/docs/CVE-2019-5443.htmlPatchVendor Advisory
https://security.netapp.com/advisory/ntap-20191017-0002/Third Party Advisory
https://www.oracle.com/security-alerts/cpuapr2020.htmlPatchThird Party Advisory
https://www.oracle.com/security-alerts/cpuoct2020.htmlPatchThird Party Advisory
https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.htmlPatchThird Party Advisory
http://www.openwall.com/lists/oss-security/2019/06/24/1Mailing ListPatchThird Party Advisory
http://www.securityfocus.com/bid/108881Broken Link
https://curl.haxx.se/docs/CVE-2019-5443.htmlPatchVendor Advisory
https://security.netapp.com/advisory/ntap-20191017-0002/Third Party Advisory
https://www.oracle.com/security-alerts/cpuapr2020.htmlPatchThird Party Advisory
https://www.oracle.com/security-alerts/cpuoct2020.htmlPatchThird Party Advisory
https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.htmlPatchThird Party Advisory

FAQ

What is CVE-2019-5443?

CVE-2019-5443 is a vulnerability with a CVSS score of 7.8 (HIGH). A non-privileged user or program can put code and a config file in a known non-privileged path (under C:/usr/local/) that will make curl <= 7.65.1 automatically run the code (as an openssl "engine") o...

How severe is CVE-2019-5443?

CVE-2019-5443 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-5443?

Check the references section above for vendor advisories and patch information. Affected products include: Haxx Curl, Microsoft Windows, Oracle Enterprise Manager Ops Center, Oracle Http Server, Oracle Mysql Server.