CVE-2026-9079 in libcURLinfo

Summary

by MITRE • 07/03/2026

libcurl had a flaw that when instructed to clear proxy authentication credentials which made it not do so, leaving the old credentials around to get used for subsequent transfers that should not know nor use them.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Responsible

Curl

Reservation

05/20/2026

Disclosure

07/03/2026

Moderation

accepted

CPE

ready

EPSS

0.00000

KEV

no

Activities

very low

Sources

Do you want to use VulDB in your project?

Use the official API to access entries easily!