Security Advisory

CVE-2015-3153

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-05-01 15:00:00

Last updated 2024-08-06 05:39:31

Assigner redhat

State PUBLISHED

Description

The default configuration for cURL and libcurl before 7.42.1 sends custom HTTP headers to both the proxy and destination server, which might allow remote proxy servers to obtain sensitive information by reading the header contents.

← Browse all CVEs View on cve.org ↗