Lucene search
Veracode Vulnerability DatabaseVERACODE:46242HistoryApr 06, 2024 - 12:34 a.m.
Certificate Validation
2024-04-0600:34:26
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
curl
libcurl
wolfssl
certificate verification
quic connections
curl is vulnerable to Certificate Validation. The vulnerability is due to a flaw in libcurl when built with wolfSSL and the error path inadvertently bypassing certificate verification when encountering unknown or bad ciphers or curves, allows for certificate verification to be skipped for QUIC connections under specific conditions.
Related
cve
cve
CVE-2024-2379
2024-03-27 08:15:41
osv
osv
CVE-2024-2379
2024-03-27 08:15:41
QUIC certificate check bypass with wolfSSL
2024-03-27 08:00:00
wolfi
wolfi
CVE-2024-2379 vulnerabilities
2024-06-29 03:08:33
hackerone
hackerone
curl: CVE-2024-2379: QUIC certificate check bypass with wolfSSL
2024-03-10 21:32:06
nessus
nessus
alpinelinux
alpinelinux
CVE-2024-2379
2024-03-27 08:15:41
ubuntucve
ubuntucve
CVE-2024-2379
2024-03-27 00:00:00
nvd
nvd
CVE-2024-2379
2024-03-27 08:15:41
redhatcve
redhatcve
CVE-2024-2379
2024-03-27 09:27:05
cgr
cgr
CVE-2024-2379 vulnerabilities
2024-05-19 03:07:16
cvelist
cvelist
CVE-2024-2379 QUIC certificate check bypass with wolfSSL
2024-03-27 07:56:41
debiancve
debiancve
CVE-2024-2379
2024-03-27 08:15:41
ibm
ibm
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0099)
2024-04-05 00:00:00
Slackware: Security Advisory (SSA:2024-087-01)
2024-03-28 00:00:00
slackware
slackware
[slackware-security] curl
2024-03-27 19:16:33
mageia
mageia
Updated curl packages fix security vulnerabilities
2024-03-29 06:49:09
redhat
redhat