{"vulnerability": "CVE-2022-27781", "sightings": [{"uuid": "60814019-b90f-448a-82b8-c841e3d085ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27781", "type": "seen", "source": "https://t.me/ctinow/52010", "content": "curl: CVE-2022-27781: CERTINFO never-ending busy-loop\n\nhttps://ift.tt/fneBOEM", "creation_timestamp": "2022-05-16T11:41:49.000000Z"}, {"uuid": "7b5a245a-896d-4d9c-90b1-da1f2afd12c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27781", "type": "seen", "source": "https://t.me/cibsecurity/43703", "content": "\u203c CVE-2022-27781 \u203c\n\nlibcurl provides the `CURLOPT_CERTINFO` option to allow applications torequest details to be returned about a server's certificate chain.Due to an erroneous function, a malicious server could make libcurl built withNSS get stuck in a never-ending busy-loop when trying to retrieve thatinformation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-02T18:38:39.000000Z"}]}