H1-3120969 — Vulnetix

H1-3120969 PUBLISHED

[High] MITM via Insecure CA Path Handling in cURL (--capath, CURLOPT_CAPATH) (CWE-494: Download of Code Without Integrity Check)

Exploit Intelligence

[High] MITM via Insecure CA Path Handling in cURL (--capath, CURLOPT_CAPATH) (CWE-494: Download of Code Without Integrity Check) (hackerone)
[High] MITM via Insecure CA Path Handling in cURL (--capath, CURLOPT_CAPATH) (CWE-494: Download of Code Without Integrity Check) (hackerone)

Timeline

Jun 30, 2025 CVE Published
Jun 30, 2025 PoC Published

References

[High] MITM via Insecure CA Path Handling in cURL (--capath, CURLOPT_CAPATH) (CWE-494: Download of Code Without Integrity Check) advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›