A insufficiently protected credentials vulnerability in fixed in curl 7.83.0 might leak authentication or cookie header data on HTTP redirects to the same host but another port number.
History

Wed, 20 Nov 2024 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: hackerone

Published: 2022-06-01T00:00:00

Updated: 2024-11-20T15:23:17.772Z

Reserved: 2022-03-23T00:00:00

Link: CVE-2022-27776

cve-icon Vulnrichment

Updated: 2024-08-03T05:32:59.926Z

cve-icon NVD

Status : Modified

Published: 2022-06-02T14:15:43.713

Modified: 2024-11-21T06:56:09.920

Link: CVE-2022-27776

cve-icon Redhat

Severity : Moderate

Publid Date: 2022-04-27T00:00:00Z

Links: CVE-2022-27776 - Bugzilla