Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An authentication bypass vulnerability exists in libcurl prior to v8.0.0 where it reuses a previously established SSH connection despite the fact that an SSH option was modified, which should have prevented reuse. libcurl maintains a pool of previously used connections to reuse them for subsequent transfers if the configurations match. However, two SSH settings were omitted from the configuration check, allowing them to match easily, potentially leading to the reuse of an inappropriate connection.
CVSS Information
N/A
Vulnerability Type
使用基本弱点进行的认证绕过
Vulnerability Title
libcurl 授权问题漏洞
Vulnerability Description
libcurl是一款用于从服务器传输数据或向服务器传输数据的工具。 libcurl v8.0.0版本存在授权问题漏洞,该漏洞源于可以重用先前建立的SSH连接,存在身份验证绕过漏洞。
CVSS Information
N/A
Vulnerability Type
N/A