CVE-2025-4947

Vulnerability Description

libcurl accidentally skips the certificate verification for QUIC connections when connecting to a host specified as an IP address in the URL. Therefore, it does not detect impostors or man-in-the-middle attacks.

Vulnerability Details

Published Date

May 28, 2025

Last Modified

June 26, 2025

Source

NVD

CVE-2025-4947

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment