Cyber Resilience

CVE-2021-22926

HighPublic PoCUpdated

Published: 05 August 2021

Published
05 August 2021
Modified
28 May 2026
KEV Added
Patch
CVSS Score v3.1 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score 0.0066 71.5th percentile
Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2021-22926 is a high-severity Improper Certificate Validation (CWE-295) vulnerability in Oracle Peoplesoft Enterprise Peopletools. Its CVSS base score is 7.5 (High).

Operationally, ranked in the top 28.5% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

EU & UK References

Vulnerability details

libcurl-using applications can ask for a specific client certificate to be used in a transfer. This is done with the `CURLOPT_SSLCERT` option (`--cert` with the command line tool).When libcurl is built to use the macOS native TLS library Secure Transport,…

more

an application can ask for the client certificate by name or with a file name - using the same option. If the name exists as a file, it will be used instead of by name.If the appliction runs with a current working directory that is writable by other users (like `/tmp`), a malicious user can create a file name with the same name as the app wants to use by name, and thereby trick the application to use the file based cert instead of the one referred to by name making libcurl send the wrong client certificate in the TLS connection handshake.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

haxx
curl
7.33.0 — 7.78.0
netapp
active iq unified manager
all versions
netapp
clustered data ontap
all versions
netapp
hci management node
all versions
netapp
oncommand insight
all versions
netapp
oncommand workflow automation
all versions
netapp
snapcenter
all versions
netapp
solidfire
all versions
oracle
mysql server
5.7.0 — 5.7.35 · 8.0.0 — 8.0.26
oracle
peoplesoft enterprise peopletools
8.57, 8.58, 8.59
+9 more product configuration(s) — see NVD for full list

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-295

When certificates are used to establish component provenance, the control requires correct certificate validation procedures.

addresses: CWE-295

Mandates approved trust anchors and issuance policies, directly preventing acceptance of unvalidated or untrusted certificates.

addresses: CWE-295

Correct system time is required for proper enforcement of certificate notBefore/notAfter dates and time-based revocation checks.

References