CVE-2022-30115 log

Severity Medium
Remote No
Type Information disclosure
A vulnerability was found in curl. This issue occurs because when using its HTTP Strict Transport Security(HSTS) support, it can instruct curl to use HTTPS directly instead of using an insecure clear text HTTP step even when HTTP is provided in the URL. This flaw leads to a clear text transmission of sensitive information.
Group Package Affected Fixed Severity Status Ticket
AVG-2706 curl 7.83.0-1 7.83.1-1 Medium Fixed
Affected versions: curl 7.82.0 to and including 7.83.0
Not affected versions: curl < 7.82.0 and curl >= 7.83.1