Acknowledged
Created: Apr 27, 2022
Updated: Oct 19, 2022
Found In Version: 10.21.20.1
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace
curl follows HTTP(S) redirects when asked to. curl also supports authentication. When a user and password are provided for a URL with a given hostname, curl makes an effort to not pass on those credentials to other hosts in redirects unless given permission with a special option.
https://curl.se/docs/CVE-2022-27774.html
CREATE(Triage):(User=admin) CVE-2022-27774 (https://nvd.nist.gov/vuln/detail/CVE-2022-27774)