CyberScoop reports that two security vulnerabilities impacting the open source curl and libcurl programs were significantly less threatening than originally thought, with the more severe flaw that affects curl and its connection with the SOCKS5 proxy only potentially exploitable through the utilization of Tor for visiting a malicious HTTPS site.