PT-2021-4653 · Curl +10 · Curl +10
Name of the Vulnerable Software and Affected Versions: curl versions 7.20.0 through 7.78.0 Description: The issue concerns the implementation of the STARTTLS protocol in curl, which can lead to insufficient authentication of data. This allows a Man-In-The-Middle attacker to inject fake responses...