CVE-2024-2466

Name

CVE-2024-2466

Description

libcurl did not check the server certificate of TLS connections done to a host specified as an IP address, when built to use mbedTLS. libcurl would wrongly avoid using the set hostname function when the specified hostname was given as an IP address, therefore completely skipping the certificate check. This affects all uses of TLS protocols (HTTPS, FTPS, IMAPS, POPS3, SMTPS, etc).

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

References

Type	URI
2499f714-1537-4658-8207-48ae4bb9eae9	https://curl.se/docs/CVE-2024-2466.html
2499f714-1537-4658-8207-48ae4bb9eae9	https://curl.se/docs/CVE-2024-2466.json
2499f714-1537-4658-8207-48ae4bb9eae9	https://hackerone.com/reports/2416725
2499f714-1537-4658-8207-48ae4bb9eae9	http://www.openwall.com/lists/oss-security/2024/03/27/4
2499f714-1537-4658-8207-48ae4bb9eae9	https://security.netapp.com/advisory/ntap-20240503-0010/
	https://support.apple.com/kb/HT214119
	https://support.apple.com/kb/HT214118
	https://support.apple.com/kb/HT214120
	http://seclists.org/fulldisclosure/2024/Jul/20
	http://seclists.org/fulldisclosure/2024/Jul/18
	http://seclists.org/fulldisclosure/2024/Jul/19
Exploit	https://www.vicarius.io/vsociety/posts/tls-certificate-check-bypass-curl-with-mbedtls-cve-2024-2466-2468

Match rules

CPE URI	Source package	Min version	Max version
	curl	>= 0	<= 8.6.0
	curl	>= 0	<= 8.5.0
`cpe:2.3:a:haxx:curl::::::::`	curl	>= 8.5.0	< 8.7.0

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
curl	edge-main	8.7.1-r0	Natanael Copa <ncopa@alpinelinux.org>	fixed
curl	edge-main	8.6.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
curl	edge-main	8.5.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
curl	edge-main	8.4.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
curl	edge-main	8.3.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
curl	edge-main	8.1.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
curl	edge-main	8.0.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
curl	edge-main	7.88.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
curl	edge-main	7.87.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
curl	edge-main	7.86.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
curl	edge-main	7.85.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
curl	edge-main	7.84.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
curl	edge-main	7.83.1-r0	None	possibly vulnerable
curl	edge-main	7.83.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
curl	edge-main	7.79.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
curl	edge-main	7.78.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
curl	edge-main	7.77.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
curl	edge-main	7.76.0-r0	None	possibly vulnerable
curl	edge-main	7.74.0-r0	None	possibly vulnerable
curl	edge-main	7.72.0-r0	None	possibly vulnerable
curl	edge-main	7.71.0-r0	None	possibly vulnerable
curl	edge-main	7.66.0-r0	None	possibly vulnerable
curl	edge-main	7.65.0-r0	None	possibly vulnerable
curl	edge-main	7.64.0-r0	None	possibly vulnerable
curl	edge-main	7.62.0-r0	None	possibly vulnerable
curl	edge-main	7.61.1-r0	None	possibly vulnerable
curl	edge-main	7.61.0-r0	None	possibly vulnerable
curl	edge-main	7.60.0-r0	None	possibly vulnerable
curl	edge-main	7.59.0-r0	None	possibly vulnerable
curl	edge-main	7.57.0-r0	None	possibly vulnerable
curl	edge-main	7.56.1-r0	None	possibly vulnerable
curl	edge-main	7.55.0-r0	None	possibly vulnerable
curl	edge-main	7.54.0-r0	None	possibly vulnerable
curl	edge-main	7.53.1-r2	None	possibly vulnerable
curl	edge-main	7.53.0-r0	None	possibly vulnerable
curl	edge-main	7.52.1-r0	None	possibly vulnerable
curl	edge-main	7.51.0-r0	None	possibly vulnerable
curl	edge-main	7.50.3-r0	None	possibly vulnerable
curl	edge-main	7.50.2-r0	None	possibly vulnerable
curl	edge-main	7.50.1-r0	None	possibly vulnerable
curl	edge-main	7.36.0-r0	None	possibly vulnerable
curl	3.22-main	8.7.1-r0	None	fixed
curl	3.22-main	8.6.0-r0	None	possibly vulnerable
curl	3.22-main	8.5.0-r0	None	possibly vulnerable
curl	3.22-main	8.4.0-r0	None	possibly vulnerable
curl	3.22-main	8.3.0-r0	None	possibly vulnerable
curl	3.22-main	8.1.0-r0	None	possibly vulnerable
curl	3.22-main	8.0.0-r0	None	possibly vulnerable
curl	3.22-main	7.88.0-r0	None	possibly vulnerable
curl	3.22-main	7.87.0-r0	None	possibly vulnerable
curl	3.22-main	7.86.0-r0	None	possibly vulnerable
curl	3.22-main	7.85.0-r0	None	possibly vulnerable
curl	3.22-main	7.84.0-r0	None	possibly vulnerable
curl	3.22-main	7.83.1-r0	None	possibly vulnerable
curl	3.22-main	7.83.0-r0	None	possibly vulnerable
curl	3.22-main	7.79.0-r0	None	possibly vulnerable
curl	3.22-main	7.78.0-r0	None	possibly vulnerable
curl	3.22-main	7.77.0-r0	None	possibly vulnerable
curl	3.22-main	7.76.0-r0	None	possibly vulnerable
curl	3.22-main	7.74.0-r0	None	possibly vulnerable
curl	3.22-main	7.72.0-r0	None	possibly vulnerable
curl	3.22-main	7.71.0-r0	None	possibly vulnerable
curl	3.22-main	7.66.0-r0	None	possibly vulnerable
curl	3.22-main	7.65.0-r0	None	possibly vulnerable
curl	3.22-main	7.64.0-r0	None	possibly vulnerable
curl	3.22-main	7.62.0-r0	None	possibly vulnerable
curl	3.22-main	7.61.1-r0	None	possibly vulnerable
curl	3.22-main	7.61.0-r0	None	possibly vulnerable
curl	3.22-main	7.60.0-r0	None	possibly vulnerable
curl	3.22-main	7.59.0-r0	None	possibly vulnerable
curl	3.22-main	7.57.0-r0	None	possibly vulnerable
curl	3.22-main	7.56.1-r0	None	possibly vulnerable
curl	3.22-main	7.55.0-r0	None	possibly vulnerable
curl	3.22-main	7.54.0-r0	None	possibly vulnerable
curl	3.22-main	7.53.1-r2	None	possibly vulnerable
curl	3.22-main	7.53.0-r0	None	possibly vulnerable
curl	3.22-main	7.52.1-r0	None	possibly vulnerable
curl	3.22-main	7.51.0-r0	None	possibly vulnerable
curl	3.22-main	7.50.3-r0	None	possibly vulnerable
curl	3.22-main	7.50.2-r0	None	possibly vulnerable
curl	3.22-main	7.50.1-r0	None	possibly vulnerable
curl	3.22-main	7.36.0-r0	None	possibly vulnerable
curl	3.21-main	8.7.1-r0	None	fixed
curl	3.21-main	8.6.0-r0	None	possibly vulnerable
curl	3.21-main	8.5.0-r0	None	possibly vulnerable
curl	3.21-main	8.4.0-r0	None	possibly vulnerable
curl	3.21-main	8.3.0-r0	None	possibly vulnerable
curl	3.21-main	8.1.0-r0	None	possibly vulnerable
curl	3.21-main	8.0.0-r0	None	possibly vulnerable
curl	3.21-main	7.88.0-r0	None	possibly vulnerable
curl	3.21-main	7.87.0-r0	None	possibly vulnerable
curl	3.21-main	7.86.0-r0	None	possibly vulnerable
curl	3.21-main	7.85.0-r0	None	possibly vulnerable
curl	3.21-main	7.84.0-r0	None	possibly vulnerable
curl	3.21-main	7.83.1-r0	None	possibly vulnerable
curl	3.21-main	7.83.0-r0	None	possibly vulnerable
curl	3.21-main	7.79.0-r0	None	possibly vulnerable
curl	3.21-main	7.78.0-r0	None	possibly vulnerable
curl	3.21-main	7.77.0-r0	None	possibly vulnerable
curl	3.21-main	7.76.0-r0	None	possibly vulnerable
curl	3.21-main	7.74.0-r0	None	possibly vulnerable
curl	3.21-main	7.72.0-r0	None	possibly vulnerable
curl	3.21-main	7.71.0-r0	None	possibly vulnerable
curl	3.21-main	7.66.0-r0	None	possibly vulnerable
curl	3.21-main	7.65.0-r0	None	possibly vulnerable
curl	3.21-main	7.64.0-r0	None	possibly vulnerable
curl	3.21-main	7.62.0-r0	None	possibly vulnerable
curl	3.21-main	7.61.1-r0	None	possibly vulnerable
curl	3.21-main	7.61.0-r0	None	possibly vulnerable
curl	3.21-main	7.60.0-r0	None	possibly vulnerable
curl	3.21-main	7.59.0-r0	None	possibly vulnerable
curl	3.21-main	7.57.0-r0	None	possibly vulnerable
curl	3.21-main	7.56.1-r0	None	possibly vulnerable
curl	3.21-main	7.55.0-r0	None	possibly vulnerable
curl	3.21-main	7.54.0-r0	None	possibly vulnerable
curl	3.21-main	7.53.1-r2	None	possibly vulnerable
curl	3.21-main	7.53.0-r0	None	possibly vulnerable
curl	3.21-main	7.52.1-r0	None	possibly vulnerable
curl	3.21-main	7.51.0-r0	None	possibly vulnerable
curl	3.21-main	7.50.3-r0	None	possibly vulnerable
curl	3.21-main	7.50.2-r0	None	possibly vulnerable
curl	3.21-main	7.50.1-r0	None	possibly vulnerable
curl	3.21-main	7.36.0-r0	None	possibly vulnerable
curl	3.20-main	8.7.1-r0	Natanael Copa <ncopa@alpinelinux.org>	fixed
curl	3.20-main	8.6.0-r0	None	possibly vulnerable
curl	3.20-main	8.5.0-r0	None	possibly vulnerable
curl	3.20-main	8.4.0-r0	None	possibly vulnerable
curl	3.20-main	8.3.0-r0	None	possibly vulnerable
curl	3.20-main	8.1.0-r0	None	possibly vulnerable
curl	3.20-main	8.0.0-r0	None	possibly vulnerable
curl	3.20-main	7.88.0-r0	None	possibly vulnerable
curl	3.20-main	7.87.0-r0	None	possibly vulnerable
curl	3.20-main	7.86.0-r0	None	possibly vulnerable
curl	3.20-main	7.85.0-r0	None	possibly vulnerable
curl	3.20-main	7.84.0-r0	None	possibly vulnerable
curl	3.20-main	7.83.1-r0	None	possibly vulnerable
curl	3.20-main	7.83.0-r0	None	possibly vulnerable
curl	3.20-main	7.79.0-r0	None	possibly vulnerable
curl	3.20-main	7.78.0-r0	None	possibly vulnerable
curl	3.20-main	7.77.0-r0	None	possibly vulnerable
curl	3.20-main	7.76.0-r0	None	possibly vulnerable
curl	3.20-main	7.74.0-r0	None	possibly vulnerable
curl	3.20-main	7.72.0-r0	None	possibly vulnerable
curl	3.20-main	7.71.0-r0	None	possibly vulnerable
curl	3.20-main	7.66.0-r0	None	possibly vulnerable
curl	3.20-main	7.65.0-r0	None	possibly vulnerable
curl	3.20-main	7.64.0-r0	None	possibly vulnerable
curl	3.20-main	7.62.0-r0	None	possibly vulnerable
curl	3.20-main	7.61.1-r0	None	possibly vulnerable
curl	3.20-main	7.61.0-r0	None	possibly vulnerable
curl	3.20-main	7.60.0-r0	None	possibly vulnerable
curl	3.20-main	7.59.0-r0	None	possibly vulnerable
curl	3.20-main	7.57.0-r0	None	possibly vulnerable
curl	3.20-main	7.56.1-r0	None	possibly vulnerable
curl	3.20-main	7.55.0-r0	None	possibly vulnerable
curl	3.20-main	7.54.0-r0	None	possibly vulnerable
curl	3.20-main	7.53.1-r2	None	possibly vulnerable
curl	3.20-main	7.53.0-r0	None	possibly vulnerable
curl	3.20-main	7.52.1-r0	None	possibly vulnerable
curl	3.20-main	7.51.0-r0	None	possibly vulnerable
curl	3.20-main	7.50.3-r0	None	possibly vulnerable
curl	3.20-main	7.50.2-r0	None	possibly vulnerable
curl	3.20-main	7.50.1-r0	None	possibly vulnerable
curl	3.20-main	7.36.0-r0	None	possibly vulnerable
curl	3.19-main	8.7.1-r0	None	fixed
curl	3.19-main	8.6.0-r0	None	possibly vulnerable
curl	3.19-main	8.5.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
curl	3.19-main	8.4.0-r0	None	possibly vulnerable
curl	3.19-main	8.3.0-r0	None	possibly vulnerable
curl	3.19-main	8.1.0-r0	None	possibly vulnerable
curl	3.19-main	8.0.0-r0	None	possibly vulnerable
curl	3.19-main	7.88.0-r0	None	possibly vulnerable
curl	3.19-main	7.87.0-r0	None	possibly vulnerable
curl	3.19-main	7.86.0-r0	None	possibly vulnerable
curl	3.19-main	7.85.0-r0	None	possibly vulnerable
curl	3.19-main	7.84.0-r0	None	possibly vulnerable
curl	3.19-main	7.83.1-r0	None	possibly vulnerable
curl	3.19-main	7.83.0-r0	None	possibly vulnerable
curl	3.19-main	7.79.0-r0	None	possibly vulnerable
curl	3.19-main	7.78.0-r0	None	possibly vulnerable
curl	3.19-main	7.77.0-r0	None	possibly vulnerable
curl	3.19-main	7.76.0-r0	None	possibly vulnerable
curl	3.19-main	7.74.0-r0	None	possibly vulnerable
curl	3.19-main	7.72.0-r0	None	possibly vulnerable
curl	3.19-main	7.71.0-r0	None	possibly vulnerable
curl	3.19-main	7.66.0-r0	None	possibly vulnerable
curl	3.19-main	7.65.0-r0	None	possibly vulnerable
curl	3.19-main	7.64.0-r0	None	possibly vulnerable
curl	3.19-main	7.62.0-r0	None	possibly vulnerable
curl	3.19-main	7.61.1-r0	None	possibly vulnerable
curl	3.19-main	7.61.0-r0	None	possibly vulnerable
curl	3.19-main	7.60.0-r0	None	possibly vulnerable
curl	3.19-main	7.59.0-r0	None	possibly vulnerable
curl	3.19-main	7.57.0-r0	None	possibly vulnerable
curl	3.19-main	7.56.1-r0	None	possibly vulnerable
curl	3.19-main	7.55.0-r0	None	possibly vulnerable
curl	3.19-main	7.54.0-r0	None	possibly vulnerable
curl	3.19-main	7.53.1-r2	None	possibly vulnerable
curl	3.19-main	7.53.0-r0	None	possibly vulnerable
curl	3.19-main	7.52.1-r0	None	possibly vulnerable
curl	3.19-main	7.51.0-r0	None	possibly vulnerable
curl	3.19-main	7.50.3-r0	None	possibly vulnerable
curl	3.19-main	7.50.2-r0	None	possibly vulnerable
curl	3.19-main	7.50.1-r0	None	possibly vulnerable
curl	3.19-main	7.36.0-r0	None	possibly vulnerable
curl	3.18-main	8.7.1-r0	None	fixed
curl	3.17-main	8.7.1-r0	None	fixed