Information disclosure in cURL for Windows

CERT-LatestNews ThreatsCybercrime VulnerabilitiesAll

Security Advisory. This security advisory describes one medium risk vulnerability.

1) Input validation error. Severity: Medium. CVSSv3:

Description. CWE-20 – Improper Input Validation The vulnerability allows a remote attacker to gain access to sensitive information. The vulnerability exists due to insufficient validation of user-supplied URL.