3.4
CVE-2025-0167
- EPSS 0.08%
- Published 05.02.2025 10:15:22
- Last modified 30.07.2025 19:41:45
- Source 2499f714-1537-4658-8207-48ae4b
- Teams watchlist Login
- Open Login
When asked to use a `.netrc` file for credentials **and** to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has a `default` entry that omits both login and password. A rare circumstance.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
This information is available to logged-in users. Login
Data is provided by the National Vulnerability Database (NVD)
Netapp ≫ Element Software Version-
Netapp ≫ Ontap Select Deploy Administration Utility Version-
Netapp ≫ Ontap Tools Version9 SwPlatformvmware_vsphere
Netapp ≫ Bootstrap Os Version-
Netapp ≫ H300s Firmware Version-
Netapp ≫ H410c Firmware Version-
Netapp ≫ H410s Firmware Version-
Netapp ≫ H500s Firmware Version-
Netapp ≫ H610c Firmware Version-
Netapp ≫ H610s Firmware Version-
Netapp ≫ H615c Firmware Version-
Netapp ≫ H700s Firmware Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.08% | 0.238 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 3.4 | 1.6 | 1.4 |
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N
|