9.8

CVSS Score

3.1

-

CVSS Score

Basic Information

CVE ID

CVE-2018-21246

GHSA ID

GHSA-gr7w-x2jp-3xgw

EPSS Score

0.66282%

CWE

CWE-287

Published

10/6/2022

Updated

2/14/2023

KEV Status

Technology

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2018-21246

CVE-2018-21246: Caddy vulnerable to Authentication Bypass due to mishandling of TLS client authentication

Caddy before 0.10.13 mishandles TLS client authentication, as demonstrated by an authentication bypass caused by the lack of the StrictHostMatching mode.

(GitHub Advisory)

Miggo Vulnerability Database

→

CVE-2018-21246

CVE-2018-21246:

9.8

CVSS Score

3.1

-

CVSS Score

Basic Information

CVE ID

CVE-2018-21246

GHSA ID

GHSA-gr7w-x2jp-3xgw

EPSS Score

0.66282%

CWE

CWE-287

Published

10/6/2022

Updated

2/14/2023

KEV Status

Technology

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
github.com/caddyserver/caddy	go	< 0.10.13	0.10.13

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stemmed from three key flaws: 1) Missing enforcement of hostname consistency between TLS SNI and HTTP Host headers, 2) Failure to require strict configuration when ClientAuth was enabled, and 3) Ambiguous ClientAuth CA pool configurations. The commit diff shows these functions were specifically modified to add StrictHostMatching enforcement, QUIC compatibility checks, and CA pool validation - indicating they were the vulnerable points. The pre-patch versions of MakeServers didn't set StrictHostMatching, serveHTTP didn't validate SNI/Host consistency, and assertConfigsCompatible didn't check CA pool conflicts.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.

Reasoning

*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.

9.8

-

Basic Information

Basic Information

Concerned about an active attack path?

CVE-2018-21246: Caddy vulnerable to Authentication Bypass due to mishandling of TLS client authentication

CVE-2018-21246:

9.8

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability IntelligenceMiggo AI

Basic Information

Basic Information

CVE-2018-21246: Caddy vulnerable to Authentication Bypass due to mishandling of TLS client authentication

9.8

9.8

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Technical Details

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI