CVE-2024-0853
CVE Information
CVE ID
CVE-2024-0853
Severity
MEDIUM
CVSS 5.3
Publish Date
2024-02-03
Description
curl inadvertently kept the SSL session ID for connections in its cache even when the verify status (*OCSP stapling*) test failed. A subsequent transfer to the same hostname could then succeed if the session ID cache was still fresh, which then skipped the verify status check.
Collection Date
2026-01-13
Impact Summary
Affected Hosts
2
Related Incidents
0
Related Alerts
0
Affected Hosts (2)
| Hostname | OS Type | Severity | Total CVEs |
|---|---|---|---|
| inbridge-42 | LINUX | CRITICAL | 142 |
| inbridge-ubt-24 | LINUX | CRITICAL | 2364 |