Threats Tagged 'cve-2026-12064'
View all threats tagged with 'cve-2026-12064'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-12064'
Click on any threat for detailed analysis and mitigation recommendations
GHSA-jm94-9f7h-36prCVE-2026-12064 0 A vulnerability in curl occurs when a schemeless URL is used with the --proto-default option set to sftp or scp. The curl tool layer incorrectly infers the URL scheme and skips initializing critical SSH security options, such as host public key verification and known hosts checking. Although libcurl correctly uses the default protocol and connects via SFTP/SCP, the missing security configuration causes curl to connect to an unverified SSH host without error notification. Join the discussion | GCVE Database | 07/03/2026, 09:31:26 UTC Added: 07/03/2026, 22:50:29 UTC |
Showing 1 to 1 of 1 result