← volver
CVE-2026-22250

wlc can skip SSL verification

CVSS 2.5 LOWEPSS 0.1%CWE-295
wlc is a Weblate command-line client using Weblate's REST API. Prior to 1.17.0, the SSL verification would be skipped for some crafted URLs. This vulnerability is fixed in 1.17.0.
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:N/A:N
Productos afectados
WeblateOrg · wlc

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/WeblateOrg/wlc/commit/a513864ec4daad00146e6d6e039559726e256fa3https://github.com/WeblateOrg/wlc/pull/1097https://github.com/WeblateOrg/wlc/security/advisories/GHSA-2mmv-7rrp-g8xh