CVE-2018-21246 is a vulnerability in Caddy Server Caddy Web Server
Published on June 15, 2020

Caddy before 0.10.13 mishandles TLS client authentication, as demonstrated by an authentication bypass caused by the lack of the StrictHostMatching mode.

NVD

Products Associated with CVE-2018-21246

Want to know whenever a new CVE is published for Caddy Server Caddy Web Server? stack.watch will email you.

Caddy Server Caddy Web Server

Exploit Probability

EPSS

1.38%

Percentile

80.07%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-21246 is a vulnerability in Caddy Server Caddy Web ServerPublished on June 15, 2020

Products Associated with CVE-2018-21246

Exploit Probability

CVE-2018-21246 is a vulnerability in Caddy Server Caddy Web Server
Published on June 15, 2020