CVE-2022-22576 log
| Source |
|
| Severity | Medium |
| Remote | Yes |
| Type | Authentication bypass |
| Description | libcurl might reuse OAUTH2-authenticated connections without properly making sure that the connection was authenticated with the same credentials as set for this transfer. This could lead to an authentication bypass, either by mistake or by a malicious actor. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-2685 | curl | 7.82.0-3 | 7.83.0-1 | Medium | Fixed |
| References |
|---|
https://curl.se/docs/CVE-2022-22576.html |
| Notes |
|---|
We are not aware of any exploit of this flaw. |