VDB
DEBIAN-CVE-2022-27775
DEBIAN-CVE-2022-27775
PUBLISHED
CVSS 7.5 HIGH
An information disclosure vulnerability exists in curl 7.65.0 to 7.82.0 are vulnerable that by using an IPv6 address that was in the connection pool but with a different zone id it could reuse a connection instead.
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:14 | curl | 0, 0, 0 |
| Debian:12 | curl | 0, 0, 0 |
| Debian:11 | curl | 0, 7.74.0-1.3, 7.74.0-1.3 |
| Debian:13 | curl | 0, 0, 0 |
Exploit Intelligence
- glcve_test.go (github-poc)
Timeline
- Jun 2, 2022 CVE Published
- Apr 28, 2026 CVE Updated