Curl · Curl · CVE-2026-7009
**Name of the Vulnerable Software and Affected Versions**
curl (affected versions not specified)
**Description**
When using the Certificate Status Request TLS extension, commonly known as OCSP stapling, to verify server certificate validity, the software fails to detect OCSP problems and incorrectly treats the response as valid.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.