curl might remove the wrong file when --no-clobber is used together with --remove-on-error. CREATE(Triage):(User=admin) CVE-2022-27778 (https://nvd.nist.gov/vuln/detail/CVE-2022-27778)