Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:26465
HistoryAug 20, 2020 - 4:14 a.m.

Insecure Connection Processing

2020-08-2004:14:02
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
18

EPSS

0.003

Percentile

66.3%

libcurl.so does not securely handle connections. An application that performs multiple requests with the multi API and sets the CURLOPT_CONNECT_ONLY option when using the setup connect-only transfer, could potentially use the wrong connection and and utilize another connection that was created.