CVE-2026-5119 in GNOME libsoupinformación

Resumen (Inglés)

A flaw was found in libsoup. When establishing HTTPS tunnels through a configured HTTP proxy, sensitive session cookies are transmitted in cleartext within the initial HTTP CONNECT request. A network-positioned attacker or a malicious HTTP proxy can intercept these cookies, leading to potential session hijacking or user impersonation.

Responsable

redhat

Reservar

2026-03-30

Divulgación

2026-03-30

Voces

ID	Vulnerabilidad	CWE	Base	Temp	0day	Hoy	Exp	KEV	EPSS	CTI	Con	CVE
354152	GNOME libsoup HTTP Proxy cifrado débil	319	4.5	4.5	$0-$5k	$0-$5k	No está definido		0.00000	3.94	No está definido	CVE-2026-5119

Mostrar más

Descripción
Cambios
Inteligencia de amenazas
API/JSON

◂ AnteriorVisión De ConjuntoPróximo ▸

Might our Artificial Intelligence support you?

Check our Alexa App!