6.9 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
10.4%
A flaw was found in curl. When a protocol selection parameter disables all protocols without adding any, the default set of protocols remains in the allowed set due to a logic error, allowing usage of disabled protocols.
bugzilla.redhat.com/show_bug.cgi?id=2270500
curl.se/docs/CVE-2024-2004.html
nvd.nist.gov/vuln/detail/CVE-2024-2004
www.cve.org/CVERecord?id=CVE-2024-2004