CVE-2026-1965Authentication Bypass by Primary Weakness in Curl

CWE-305Authentication Bypass by Primary WeaknessCWE-303Incorrect Implementation of Authentication Algorithm14 documents10 sources
Severity
6.5MEDIUMNVD
OSV3.4
EPSS
0.1%
top 80.78%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Haxx CurlCurl
Timeline
PublishedMar 11
Latest updateMar 16

Description

libcurl can in some circumstances reuse the wrong connection when asked to do an Negotiate-authenticated HTTP or HTTPS request. libcurl features a pool of recent connections so that subsequent requests can reuse an existing connection to avoid overhead. When reusing a connection a range of criterion must first be met. Due to a logical error in the code, a request that was issued by an application could wrongfully reuse an existing connection to the same server that was authenticated using diff

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages4 packages

NVDhaxx/curl7.10.68.19.0
Debianhaxx/curl< 8.19.0~rc3-1
Ubuntuhaxx/curl< 7.81.0-1ubuntu1.23+4
CVEListV5curl/curl8.18.08.18.0+169

Patches

Patch: curl.se

🔴Vulnerability Details

5
OSV
curl vulnerabilities2026-03-16
CVEList
bad reuse of HTTP Negotiate connection2026-03-11
GHSA
GHSA-q9qg-g2c3-3hr2: libcurl can in some circumstances reuse the wrong connection when asked to do an Negotiate-authenticated HTTP or HTTPS request2026-03-11
OSV
CVE-2026-1965: libcurl can in some circumstances reuse the wrong connection when asked to do an Negotiate-authenticated HTTP or HTTPS request2026-03-11
OSV
curl vulnerabilities2026-03-11

📋Vendor Advisories

5
Ubuntu
curl vulnerabilities2026-03-16
Red Hat
curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication2026-03-11
Ubuntu
curl vulnerabilities2026-03-11
Microsoft
bad reuse of HTTP Negotiate connection2026-03-10
Debian
CVE-2026-1965: curl - libcurl can in some circumstances reuse the wrong connection when asked to do an...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-1965 Impact, Exploitability, and Mitigation Steps | Wiz

💬Community

2
Bugzilla
CVE-2026-1965 curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication [fedora-43]2026-03-11
Bugzilla
CVE-2026-1965 curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication [fedora-42]2026-03-11
CVE-2026-1965 — Haxx Curl vulnerability | cvebase