CVE-2026-6429
MEDIUMDescription
When asked to both use a `.netrc` file for credentials and to follow HTTP redirects, libcurl could leak the password used for the first host to the followed-to host under certain circumstances.
Is your site exposed to CVE-2026-6429?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
EPSS — Exploit Prediction
EPSS estimates the probability that this vulnerability will be exploited in the wild within the next 30 days. A higher score means more likely to be exploited.
Affected Products
| Vendor | Product |
|---|---|
| haxx | curl |
References
Advisories & Patches
Other References
Frequently Asked Questions
What is CVE-2026-6429? +
How severe is CVE-2026-6429? +
What products are affected by CVE-2026-6429? +
How do I check if I'm vulnerable to CVE-2026-6429? +
Related Vulnerabilities
The curl logic that works with SASL authentication could end up cleaning up the GSASL context *twice* without clearing the …
libcurl had a flaw that when instructed to clear proxy authentication credentials which made it not do so, leaving the …
Successfully using libcurl to do a transfer to a specific HTTP origin (`hostA`) with **Digest** authentication and then changing the …
A use-after-free vulnerability exists in libcurl when an application configures an HTTP/2 stream-dependency tree via `CURLOPT_STREAM_DEPENDS` or `CURLOPT_STREAM_DEPENDS_E`, subsequently invokes …
A flaw in curl’s cookie parsing logic allows a malicious HTTP server to set 'super cookies' that bypass the Public …
libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of them matches the …