Vulnerabilities impacting curl, libcurl not as severe as believed

CyberScoop reports that two security vulnerabilities impacting the open source curl and libcurl programs were significantly less threatening than originally thought, with the more severe flaw that affects curl and its connection with the SOCKS5 proxy only potentially exploitable through the utilization of Tor for visiting a malicious HTTPS site.

cloud security curl cyberscoop flaw https libcurl malicious open source proxy reports security security-staff-acquisition-development socks5 socks5 proxy thought tor vulnerabilities