CNNVD-202601-1824 Information

CNNVD ID

CNNVD-202601-1824

Related CVE

CVE-2026-22250

• CNNVD Published: 2026-01-12

Description (Chinese)

wlc是Weblate开源的一个命令行客户端。 wlc 1.17.0之前版本存在信任管理问题漏洞，该漏洞源于对某些特制URL会跳过SSL验证。

Description (English)

wlc is a command line client of the Weblate Open Source. The previous version of wlc 1.17.0 had a trust management gap, which stemmed from the fact that certain special URLs would skip SSL validation.

Hazard Level

Critical

Vulnerability Type

信任管理问题

Affected Vendor

Weblate

Published

2026-01-12

Last Modified

2026-02-24

References

https://github.com/WeblateOrg/wlc/security/advisories/GHSA-2mmv-7rrp-g8xh https://github.com/WeblateOrg/wlc/commit/a513864ec4daad00146e6d6e039559726e256fa3 https://github.com/WeblateOrg/wlc/pull/1097 https://access.redhat.com/security/cve/cve-2026-22250

Patch

https://weblate.org/zh-hans/download/