Key Exchange without Entity Authentication

CVE-2025-10966

Medium

4.3/10

Summary

Curl's code for managing SSH connections when SFTP was done using the wolfSSH-powered backend was flawed and missed host verification mechanisms. This prevents curl from detecting MITM attackers and more. Affected versions are from 7.69.0 through 8.16.0.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: LOW
Confidentiality Impact: LOW
Availability Impact: NONE

CWE-322 - Key Exchange without Entity Authentication

The software performs a key exchange with an actor without verifying the identity of that actor.

References

Advisory
Advisory
Disclosure
Mail Thread
Pull request

Advisory Timeline

Published Nov 07, 2025

Key Exchange without Entity Authentication

CVE-2025-10966

Summary

CWE-322 - Key Exchange without Entity Authentication

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS