CVE-2015-3153 in Enterprise Managerinfo

Summary

The default configuration for cURL and libcurl before 7.42.1 sends custom HTTP headers to both the proxy and destination server, which might allow remote proxy servers to obtain sensitive information by reading the header contents.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

04/10/2015

Disclosure

05/01/2015

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-200

CVSS

5.3

EPSS

0.09760

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2015-3153
NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-3153
CVE Details	https://www.cvedetails.com/cve/CVE-2015-3153/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!