Description
curl 7.1.1 to and including 7.75.0 is vulnerable to an "Exposure of Private Personal Information to an Unauthorized Actor" by leaking credentials in the HTTP Referer: header. libcurl does not strip off user credentials from the URL when automatically populating the Referer: HTTP request header field in outgoing HTTP requests, and therefore risks leaking sensitive data to the server that is the target of the second HTTP request.
References (10)
Scores
CVSS v3
5.3
EPSS
0.0011
EPSS Percentile
29.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-359
CWE-200
Status
published
Products (15)
broadcom/fabric_operating_system
debian/debian_linux
9.0
fedoraproject/fedora
32
fedoraproject/fedora
33
fedoraproject/fedora
34
haxx/libcurl
7.1.1 - 7.75.0
netapp/hci_compute_node
netapp/hci_management_node
netapp/hci_storage_node
netapp/solidfire
... and 5 more
Published
Apr 01, 2021
Tracked Since
Feb 18, 2026