CURL-CVE-2024-11053

See a problem?
Please try reporting it to the source first.
Source
https://curl.se/docs/CVE-2024-11053.html
Import Source
https://curl.se/docs/CURL-CVE-2024-11053.json
JSON Data
https://api.osv.dev/v1/vulns/CURL-CVE-2024-11053
Aliases
Published
2024-12-11T08:00:00Z
Modified
2025-01-07T11:28:55Z
Summary
netrc and redirect credential leak
Details

When asked to both use a .netrc file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances.

This flaw only manifests itself if the netrc file has an entry that matches the redirect target hostname but the entry either omits just the password or omits both login and password.

Database specific 
{
    "CWE": {
        "id": "CWE-200",
        "desc": "Exposure of Sensitive Information to an Unauthorized Actor"
    },
    "award": {
        "amount": "505",
        "currency": "USD"
    },
    "URL": "https://curl.se/docs/CVE-2024-11053.json",
    "package": "curl",
    "severity": "Low",
    "issue": "https://hackerone.com/reports/2829063",
    "www": "https://curl.se/docs/CVE-2024-11053.html",
    "last_affected": "8.11.0"
}
References
Credits
    • Harry Sintonen - FINDER
    • Daniel Stenberg - REMEDIATION_DEVELOPER

Affected packages

Git / github.com/curl/curl.git

Affected ranges

Type
SEMVER
Events
Introduced
7.76.0
Fixed
8.11.1
Type
GIT
Repo
https://github.com/curl/curl.git
Events
Introduced
46620b97431e19c53ce82e55055c85830f088cf4
Fixed
e9b9bbac22c26cf67316fa8e6c6b9e831af31949

Affected versions

7.*

7.76.0
7.76.1
7.77.0
7.78.0
7.79.0
7.79.1
7.80.0
7.81.0
7.82.0
7.83.0
7.83.1
7.84.0
7.85.0
7.86.0
7.87.0
7.88.0
7.88.1

8.*

8.0.0
8.0.1
8.1.0
8.1.1
8.1.2
8.10.0
8.10.1
8.11.0
8.2.0
8.2.1
8.3.0
8.4.0
8.5.0
8.6.0
8.7.0
8.7.1
8.8.0
8.9.0
8.9.1