3.4
LOW
CVE-2024-11053
"curl .netrc Information Leak Vulnerability"
Description

When asked to both use a `.netrc` file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has an entry that matches the redirect target hostname but the entry either omits just the password or omits both login and password.

INFO

Published Date :

Dec. 11, 2024, 8:15 a.m.

Last Modified :

Dec. 15, 2024, 5:15 p.m.

Source :

2499f714-1537-4658-8207-48ae4bb9eae9

Remotely Exploitable :

Yes !

Impact Score :

1.4

Exploitability Score :

1.6
Affected Products

The following products are affected by CVE-2024-11053 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Haxx curl
: Total Affected Vendor : 1 | Products : 1
References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2024-11053.

URL Resource
https://curl.se/docs/CVE-2024-11053.html
https://curl.se/docs/CVE-2024-11053.json
https://hackerone.com/reports/2829063
http://www.openwall.com/lists/oss-security/2024/12/11/1

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2024-11053 vulnerability anywhere in the article.

  • Cybersecurity News
CVE-2024-11053: Curl Vulnerability Exposes User Credentials in Redirects

A recently discovered vulnerability in the popular curl command line tool and library, tracked as CVE-2024-11053 and assigned a CVSS score of 9.1, could lead to the unintended exposure of user credent ... Read more

Published Date: Dec 15, 2024 (5 days, 6 hours ago)
CVE-2024-11274 CVE-2024-42448 CVE-2024-11053 CVE-2024-42449 CVE-2024-41126 CVE-2024-41125 CVE-2024-9479 CVE-2024-9478 CVE-2024-8069 CVE-2024-8068 ...+2 more CVE
  • Cybersecurity News
CVE-2024-53677 (CVSS 9.5): Critical Vulnerability in Apache Struts Allows Remote Code Execution

Developers using the popular Apache Struts framework are urged to update their systems immediately following the discovery of a critical security flaw (CVE-2024-53677, CVSS 9.5) that could allow attac ... Read more

Published Date: Dec 12, 2024 (1 week, 1 day ago)
CVE-2024-53677 CVE-2024-11053 CVE-2024-55563 CVE-2024-8929 CVE-2024-8932 CVE-2024-47533 CVE-2023-50164
  • Cybersecurity News
Zloader Trojan Employs Novel DNS Tunneling Protocol for Enhanced Evasion

Zloader, the modular Trojan with roots in the infamous Zeus malware, has once again evolved, presenting a new and sophisticated challenge to cybersecurity professionals. ThreatLabz, the security resea ... Read more

Published Date: Dec 12, 2024 (1 week, 1 day ago)
CVE-2024-11053 CVE-2024-55563 CVE-2024-8929 CVE-2024-8932 CVE-2024-47533 CVE-2022-37969
  • Cybersecurity News
Artivion Discloses Cybersecurity Incident, Impacts Operations and Financial Outlook

Artivion, Inc., a global leader in the development and manufacturing of cardiovascular surgical devices, announced a cybersecurity incident that has disrupted its operations and compromised sensitive ... Read more

Published Date: Dec 11, 2024 (1 week, 2 days ago)
CVE-2024-11053 CVE-2024-55563 CVE-2024-8929 CVE-2024-8932 CVE-2024-47533 CVE-2023-20269
  • Cybersecurity News
QNAP Addresses High Severity Vulnerabilities in License Center and Operating Systems

QNAP, a leading provider of network-attached storage (NAS) solutions, has issued a security advisory addressing multiple vulnerabilities affecting its License Center and QTS/QuTS hero operating system ... Read more

Published Date: Dec 09, 2024 (1 week, 4 days ago)
CVE-2024-11053 CVE-2024-55563 CVE-2024-50403 CVE-2024-50402 CVE-2024-50393 CVE-2024-48868 CVE-2024-48867 CVE-2024-48866 CVE-2024-48865 CVE-2024-48863 ...+6 more CVE
  • Cybersecurity News
CVE-2024-10905 (CVSS 10): Critical Vulnerability in SailPoint IdentityIQ Exposes Sensitive Data

A critical vulnerability has been discovered in SailPoint IdentityIQ, a widely used identity and access management (IAM) platform. This flaw, tracked as CVE-2024-10905, has been assigned a CVSS score ... Read more

Published Date: Dec 05, 2024 (2 weeks, 1 day ago)
CVE-2024-11053 CVE-2024-55563 CVE-2024-8785 CVE-2024-10905 CVE-2024-8929 CVE-2024-8932 CVE-2024-47533 CVE-2024-51378
  • Cybersecurity News
CVE-2024-51378 (CVSS 10): Critical CyberPanel Flaw Under Active Attack, CISA Warns

The Cybersecurity and Infrastructure Security Agency (CISA) has warned about a critical vulnerability in CyberPanel, an open-source web hosting control panel. This flaw, tracked as CVE-2024-51378, is ... Read more

Published Date: Dec 05, 2024 (2 weeks, 1 day ago)
CVE-2024-11053 CVE-2024-55563 CVE-2024-8929 CVE-2024-8932 CVE-2024-47533 CVE-2024-51568 CVE-2024-51567 CVE-2024-51378

The following table lists the changes that have been made to the CVE-2024-11053 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • CVE Modified by 134c704f-9b21-4f2e-91b3-4a467353bcc0

    Dec. 15, 2024

    Action Type Old Value New Value
    Added CVSS V3.1 AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N
    Removed CVSS V3.1 AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:N
  • CVE Modified by 134c704f-9b21-4f2e-91b3-4a467353bcc0

    Dec. 15, 2024

    Action Type Old Value New Value
    Added CVSS V3.1 AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:N
    Removed CVSS V3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
  • CVE Modified by 134c704f-9b21-4f2e-91b3-4a467353bcc0

    Dec. 11, 2024

    Action Type Old Value New Value
    Added CVSS V3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
  • CVE Modified by af854a3a-2127-422b-91ae-364da2661108

    Dec. 11, 2024

    Action Type Old Value New Value
    Added Reference http://www.openwall.com/lists/oss-security/2024/12/11/1
  • New CVE Received by 2499f714-1537-4658-8207-48ae4bb9eae9

    Dec. 11, 2024

    Action Type Old Value New Value
    Added Description When asked to both use a `.netrc` file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has an entry that matches the redirect target hostname but the entry either omits just the password or omits both login and password.
    Added Reference https://curl.se/docs/CVE-2024-11053.html
    Added Reference https://curl.se/docs/CVE-2024-11053.json
    Added Reference https://hackerone.com/reports/2829063
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2024-11053 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2024-11053 weaknesses.

CVSS31 - Vulnerability Scoring System
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
: