CVE-2025-0167 : When asked to use a `.netrc` file for credentials **and** to follow HTTP redirec

When asked to use a `.netrc` file for credentials **and** to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This flaw only manifests itself if the netrc file has a `default` entry that omits both login and password. A rare circumstance.

Published 2025-02-05 09:15:07

Updated 2025-03-07 01:15:12

Source curl

View at NVD, CVE.org

Products affected by CVE-2025-0167

Please log in to view affected product information.

Exploit prediction scoring system (EPSS) score for CVE-2025-0167

EPSS FAQ

0.06%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 16 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2025-0167

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
3.4	LOW	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N	1.6	1.4	134c704f-9b21-4f2e-91b3-4a467353bcc0	2025-02-06
Attack Vector: Network Attack Complexity: High Privileges Required: None User Interaction: Required Scope: Changed Confidentiality: Low Integrity: None Availability: None

References for CVE-2025-0167

https://curl.se/docs/CVE-2025-0167.json
https://hackerone.com/reports/2917232

Just a moment...
https://security.netapp.com/advisory/ntap-20250306-0008/

CVE-2025-0167 Libcurl Vulnerability in NetApp Products | NetApp Product Security
https://curl.se/docs/CVE-2025-0167.html

curl - netrc and default credential leak - CVE-2025-0167

Jump to

Vulnerability Details : CVE-2025-0167

Products affected by CVE-2025-0167

Exploit prediction scoring system (EPSS) score for CVE-2025-0167

CVSS scores for CVE-2025-0167

References for CVE-2025-0167