CVE advisoryHIGH
CVE-2021-22926
Attacker can trick services using curl into sending the wrong client certificate
Halo Surface Signal: 3 out of 5 — possibly public-facing.
A flaw in libcurl on macOS could allow applications to use incorrect client certificates during secure connections, potentially exposing sensitive data. This issue is relevant now due to the widespread use of libcurl in many applications.