CURL-CVE-2025-4947

See a problem?
Please try reporting it to the source first.
Source
https://curl.se/docs/CVE-2025-4947.html
Import Source
https://curl.se/docs/CURL-CVE-2025-4947.json
JSON Data
https://api.osv.dev/v1/vulns/CURL-CVE-2025-4947
Aliases
Published
2025-05-28T08:00:00Z
Modified
2025-05-28T08:10:29Z
Summary
QUIC certificate check skip with wolfSSL
Details

libcurl accidentally skips the certificate verification for QUIC connections when connecting to a host specified as an IP address in the URL. Therefore, it does not detect impostors or man-in-the-middle attacks.

Database specific 
{
    "issue": "https://hackerone.com/reports/3150884",
    "URL": "https://curl.se/docs/CVE-2025-4947.json",
    "www": "https://curl.se/docs/CVE-2025-4947.html",
    "package": "curl",
    "last_affected": "8.13.0",
    "CWE": {
        "id": "CWE-295",
        "desc": "Improper Certificate Validation"
    },
    "award": {
        "currency": "USD",
        "amount": "2540"
    },
    "affects": "both",
    "severity": "Medium"
}
References
Credits
    • Hiroki Kurosawa - FINDER
    • Stefan Eissing - REMEDIATION_DEVELOPER

Affected packages

Git / github.com/curl/curl.git

Affected ranges

Type
SEMVER
Events
Introduced
8.8.0
Fixed
8.14.0
Type
GIT
Repo
https://github.com/curl/curl.git
Events
Introduced
4c46e277b2a0c0489de0e0fcb91f315c62f0369c
Fixed
a85f1df4803bbd272905c9e712537b41afeafbd3

Affected versions

8.*

8.10.0
8.10.1
8.11.0
8.11.1
8.12.0
8.12.1
8.13.0
8.8.0
8.9.0
8.9.1