7 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
15.8%
A flaw was found in curl. When curl is built to use mbedTLS as the TLS backend, it does not check the server certificate of TLS connections done to a host specified as an IP address.
bugzilla.redhat.com/show_bug.cgi?id=2270497
curl.se/docs/CVE-2024-2466.html
nvd.nist.gov/vuln/detail/CVE-2024-2466
www.cve.org/CVERecord?id=CVE-2024-2466