CVE-2024-6104
CVSS v3.1
5.5 (Medium)
EPSS
0.04 % (10th)
Affected Products
1
Advisories
17
NVD Status
Analyzed
go-retryablehttp prior to 0.7.7 did not sanitize urls when writing them to its log file. This could lead to go-retryablehttp writing sensitive HTTP basic auth credentials to its log file. This vulnerability, CVE-2024-6104, was fixed in go-retryablehttp 0.7.7.
- CVE Status
- PUBLISHED
- NVD Status
- Analyzed
- CNA
- HashiCorp Inc.
- Published Date
-
2024-06-24 17:15:11
(2 months ago) - Updated Date
-
2024-06-26 17:19:40
(2 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...