Количество 11
Количество 11
CVE-2025-0167
When asked to use a `.netrc` file for credentials **and** to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has a `default` entry that omits both login and password. A rare circumstance.
CVE-2025-0167
When asked to use a `.netrc` file for credentials **and** to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has a `default` entry that omits both login and password. A rare circumstance.
CVE-2025-0167
CVE-2025-0167
When asked to use a `.netrc` file for credentials **and** to follow HT ...
GHSA-c42g-rmxf-64ch
When asked to use a `.netrc` file for credentials **and** to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has a `default` entry that omits both login and password. A rare circumstance.
BDU:2025-05209
Уязвимость программного средства для взаимодействия с серверами cURL, связанная с недостаточной защитой служебных данных, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
SUSE-SU-2025:0372-1
Security update for curl
SUSE-SU-2025:0371-1
Security update for curl
SUSE-SU-2025:0370-1
Security update for curl
SUSE-SU-2025:0369-1
Security update for curl
ROS-20250424-05
Множественные уязвимости curl
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-0167 When asked to use a `.netrc` file for credentials **and** to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has a `default` entry that omits both login and password. A rare circumstance. | CVSS3: 3.4 | 0% Низкий | 6 месяцев назад |
 | CVE-2025-0167 When asked to use a `.netrc` file for credentials **and** to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has a `default` entry that omits both login and password. A rare circumstance. | CVSS3: 3.4 | 0% Низкий | 6 месяцев назад |
 | CVSS3: 3.4 | 0% Низкий | 5 месяцев назад | |
| CVE-2025-0167 When asked to use a `.netrc` file for credentials **and** to follow HT ... | CVSS3: 3.4 | 0% Низкий | 6 месяцев назад |
| GHSA-c42g-rmxf-64ch When asked to use a `.netrc` file for credentials **and** to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has a `default` entry that omits both login and password. A rare circumstance. | CVSS3: 3.4 | 0% Низкий | 6 месяцев назад |
 | BDU:2025-05209 Уязвимость программного средства для взаимодействия с серверами cURL, связанная с недостаточной защитой служебных данных, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации | CVSS3: 3.4 | 0% Низкий | 6 месяцев назад |
 | SUSE-SU-2025:0372-1 Security update for curl | 6 месяцев назад | ||
| SUSE-SU-2025:0371-1 Security update for curl | 6 месяцев назад | ||
| SUSE-SU-2025:0370-1 Security update for curl | 6 месяцев назад | ||
| SUSE-SU-2025:0369-1 Security update for curl | 6 месяцев назад | ||
 | ROS-20250424-05 Множественные уязвимости curl | CVSS3: 9.1 | 3 месяца назад |
Уязвимостей на страницу