CVE-2026-3784

MEDIUM

curl 7.7-8.18.0 - Authentication Bypass via HTTP Proxy Connection Reuse

Title source: llm

Description

curl would wrongly reuse an existing HTTP proxy connection doing CONNECT to a server, even if the new request uses different credentials for the HTTP proxy. The proper behavior is to create or use a separate connection.

References (5)

Core 5

Core References

Various Sources

https://curl.se/docs/CVE-2026-3784.html

Third Party Advisory

https://hackerone.com/reports/3584903

Vendor Advisory

https://cert-portal.siemens.com/productcert/html/ssa-253495.html

Various Sources

https://curl.se/docs/CVE-2026-3784.json

Mailing List

http://www.openwall.com/lists/oss-security/2026/03/11/3

Scores

CVSS v3 6.5

EPSS 0.0029

EPSS Percentile 20.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-305

Status published

Products (50)

curl/curl 7.10

curl/curl 7.10.1

curl/curl 7.10.2

curl/curl 7.10.3

curl/curl 7.10.4

curl/curl 7.10.5

curl/curl 7.10.6

curl/curl 7.10.7

curl/curl 7.10.8

curl/curl 7.11.0

... and 40 more

Published Mar 11, 2026

Tracked Since Mar 11, 2026