A vulnerability exists where a new transfer that uses STARTTLS to upgrade the connection might reuse an existing live connection even though the TLS configuration mismatches so it should not.
"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2026-8286.json"