CVE-2025-23419 — When multiple server blocks are configured to share the same IP address and port, an attacker can use session resumption to bypass client certificate authentication requirements on these servers. This — CVE Database · The Intelligence Room