AI Score
Confidence
High
EPSS
Percentile
71.0%
Due to improper TLS verification when serving traffic for multiple SNIs, an attacker may bypass TLS client authentication by indicating an SNI during the TLS handshake that is different from the name in the HTTP Host header.
bugs.gentoo.org/715214
github.com/caddyserver/caddy/commit/4d9ee000c8d2cbcdd8284007c1e0f2da7bc3c7c3
github.com/caddyserver/caddy/pull/2099