CVE-2026-6276 in cURL情報

要約

〜によって MITRE • 2026年05月13日

Using libcurl, when a custom `Host:` header is first set for an HTTP request and a second request is subsequently done using the same *easy handle* but without the custom `Host:` header set, the second request would use stale information and pass on cookies meant for the first host in the second request. Leak them.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

モデレーション

承諾済み

エントリ

VDB-360238

EPSS

0.00013

KEV

いいえ

アクティビティ

非常低い

セクター

Pharma, Chemical, ...

ソース

MITREhttps://www.cve.org/CVERecord?id=CVE-2026-6276
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2026-6276
CVE Detailshttps://www.cvedetails.com/cve/CVE-2026-6276/

概要

Interested in the pricing of exploits?

See the underground prices here!