Vulnerabilities > CVE-2003-1605 - Credentials Management vulnerability in Haxx Curl

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
haxx
CWE-255
NVD
Published: 2018-08-23
Updated: 2018-10-15

Summary

curl 7.x before 7.10.7 sends CONNECT proxy credentials to the remote server.

Vulnerable Configurations

Part Description Count
Application
Haxx
34

Common Weakness Enumeration (CWE)

References