vulnerability

FreeBSD: VID-92a4d881-c6cf-11ec-a06f-d4c9ef517024 (CVE-2022-22576): cURL -- Multiple vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:S/C:P/I:P/A:N)	Apr 28, 2022	Nov 4, 2022	Dec 10, 2025

Severity

CVSS

(AV:N/AC:L/Au:S/C:P/I:P/A:N)

Published

Apr 28, 2022

Added

Nov 4, 2022

Modified

Dec 10, 2025

Description

The cURL project reports: OAUTH2 bearer bypass in connection re-use (CVE-2022-22576) Credential leak on redirect (CVE-2022-27774) Bad local IPv6 connection reuse (CVE-2022-27775) Auth/cookie leak on redirect (CVE-2022-27776)

Solution

freebsd-upgrade-package-curl

References

CVE-2022-22576
https://attackerkb.com/topics/CVE-2022-22576
CWE-287
CWE-306

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today