CVE-2025-10966
CVE Information
CVE ID
CVE-2025-10966
Severity
MEDIUM
CVSS 4.3
Publish Date
2025-11-07
Description
curl's code for managing SSH connections when SFTP was done using the wolfSSH powered backend was flawed and missed host verification mechanisms. This prevents curl from detecting MITM attackers and more.
Collection Date
2026-02-05
Impact Summary
Affected Hosts
3
Related Incidents
0
Related Alerts
0
Affected Hosts (3)
| Hostname | OS Type | Severity | Total CVEs |
|---|---|---|---|
| in-bridge-40 | LINUX | CRITICAL | 396 |
| inbridge-ubt-24 | LINUX | CRITICAL | 2336 |
| inbridge-42 | LINUX | CRITICAL | 148 |