by vicarius
log in join community
by @Smartkeyss
10 Jun 2024
#cve_analysis

Write a blog analysis for a CVE

publish

TLS certificate check bypass cURL with mbedTLS - (CVE-2024-2466)

by @Smartkeyss
by @Smartkeyss
10 Jun 2024
#cve_analysis

Write a blog analysis for a CVE

publish

TLS certificate check bypass cURL with mbedTLS - (CVE-2024-2466)

CVEs

CVE-2024-2466
6.5 Medium Severity

PoC video

Summary

libcurl with mbedTLS skips TLS certificate checks for IP address connections, bypassing security for all TLS protocols (HTTPS, FTPS, IMAPS, etc.).

Description

Tags

#CVE-2024-2466#cve-analysis#curl#libcURL
users/photos/clsevlral8gef1hon15grbvup.jpg

@Smartkeyss

31 posts

I am just curious 😊 I use simple words to explain complicated things.

Total vcoins

87.9K

Comments (0)