Количество 17
Количество 17
CVE-2024-11053
When asked to both use a `.netrc` file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has an entry that matches the redirect target hostname but the entry either omits just the password or omits both login and password.
CVE-2024-11053
When asked to both use a `.netrc` file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has an entry that matches the redirect target hostname but the entry either omits just the password or omits both login and password.
CVE-2024-11053
When asked to both use a `.netrc` file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has an entry that matches the redirect target hostname but the entry either omits just the password or omits both login and password.
CVE-2024-11053
CVE-2024-11053
When asked to both use a `.netrc` file for credentials and to follow H ...
SUSE-SU-2024:4359-1
Security update for curl
SUSE-SU-2024:4288-1
Security update for curl
SUSE-SU-2024:4284-2
Security update for curl
SUSE-SU-2024:4284-1
Security update for curl
GHSA-h288-5fq8-5pfw
When asked to both use a `.netrc` file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has an entry that matches the redirect target hostname but the entry either omits just the password or omits both login and password.
BDU:2024-11106
Уязвимость обработчика netrc-файлов утилиты командной строки cURL, позволяющая нарушителю получить доступ к учётным данным
ROS-20250424-25
Множественные уязвимости libcurl
ROS-20250424-05
Множественные уязвимости curl
RLSA-2025:1673
Important: mysql:8.0 security update
RLSA-2025:1671
Important: mysql security update
ELSA-2025-1673
ELSA-2025-1673: mysql:8.0 security update (IMPORTANT)
ELSA-2025-1671
ELSA-2025-1671: mysql security update (IMPORTANT)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-11053 When asked to both use a `.netrc` file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has an entry that matches the redirect target hostname but the entry either omits just the password or omits both login and password. | CVSS3: 3.4 | 0% Низкий | около 1 года назад |
 | CVE-2024-11053 When asked to both use a `.netrc` file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has an entry that matches the redirect target hostname but the entry either omits just the password or omits both login and password. | CVSS3: 5.9 | 0% Низкий | около 1 года назад |
 | CVE-2024-11053 When asked to both use a `.netrc` file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has an entry that matches the redirect target hostname but the entry either omits just the password or omits both login and password. | CVSS3: 3.4 | 0% Низкий | около 1 года назад |
 | CVSS3: 3.4 | 0% Низкий | 11 месяцев назад | |
| CVE-2024-11053 When asked to both use a `.netrc` file for credentials and to follow H ... | CVSS3: 3.4 | 0% Низкий | около 1 года назад |
 | SUSE-SU-2024:4359-1 Security update for curl | 0% Низкий | 12 месяцев назад | |
| SUSE-SU-2024:4288-1 Security update for curl | 0% Низкий | около 1 года назад | |
| SUSE-SU-2024:4284-2 Security update for curl | 0% Низкий | 12 месяцев назад | |
| SUSE-SU-2024:4284-1 Security update for curl | 0% Низкий | 12 месяцев назад | |
| GHSA-h288-5fq8-5pfw When asked to both use a `.netrc` file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has an entry that matches the redirect target hostname but the entry either omits just the password or omits both login and password. | CVSS3: 9.1 | 0% Низкий | около 1 года назад |
 | BDU:2024-11106 Уязвимость обработчика netrc-файлов утилиты командной строки cURL, позволяющая нарушителю получить доступ к учётным данным | CVSS3: 9.1 | 0% Низкий | около 1 года назад |
 | ROS-20250424-25 Множественные уязвимости libcurl | CVSS3: 9.1 | 8 месяцев назад | |
| ROS-20250424-05 Множественные уязвимости curl | CVSS3: 9.1 | 8 месяцев назад | |
 | RLSA-2025:1673 Important: mysql:8.0 security update | 10 месяцев назад | ||
| RLSA-2025:1671 Important: mysql security update | 9 месяцев назад | ||
| ELSA-2025-1673 ELSA-2025-1673: mysql:8.0 security update (IMPORTANT) | 10 месяцев назад | ||
| ELSA-2025-1671 ELSA-2025-1671: mysql security update (IMPORTANT) | 10 месяцев назад |
Уязвимостей на страницу