libcurl Broken TLS options for threaded LDAPS CVE-2025-14819 identified on DLP servers
Article ID: 429169
Updated On:
Products
Data Loss Prevention Core Package
Data Loss Prevention Discover Suite
Data Loss Prevention Endpoint Discover
Data Loss Prevention Endpoint Prevent
Data Loss Prevention Enforce
Data Loss Prevention Enterprise Suite
Data Loss Prevention Network Discover
Data Loss Prevention Network Monitor
Data Loss Prevention Network Monitor and Prevent for Email
Data Loss Prevention Network Monitor and Prevent for Email and Web
Data Loss Prevention Network Monitor and Prevent for Web
Data Loss Prevention Network Protect
Data Loss Prevention Plus Suite
Data Loss Prevention
Data Loss Prevention Network Prevent for Email
Issue/Introduction
Your security vulnerability scanner has identified a libcurl vulnerability CVE-2025-14819 on DLP servers.
Resolution
This CVE affects libcurl when the application uses its internal TLS cache and partial chain caching. Symantec DLP sets TLS_NATIVE_CA, which delegates certificate validation and caching to the native OS certificate store. Since DLP does not use libcurl’s internal TLS cache, this vulnerability does not impact DLP.
No remediation steps are required.
Additional Information
Feedback
Yes
No
Powered by
