CVE-2026-9079

N/A Unknown
Published: July 03, 2026 Modified: July 03, 2026
View on NVD

Description

libcurl had a flaw that when instructed to clear proxy authentication credentials which made it not do so, leaving the old credentials around to get used for subsequent transfers that should not know nor use them.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
https://curl.se/docs/CVE-2026-9079.html
Source: 2499f714-1537-4658-8207-48ae4bb9eae9
https://curl.se/docs/CVE-2026-9079.json
Source: 2499f714-1537-4658-8207-48ae4bb9eae9
https://hackerone.com/reports/3750295
Source: 2499f714-1537-4658-8207-48ae4bb9eae9

3 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
Exploitation Status
Not in CISA KEV