CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Hashicorp: >> Retryablehttp Security Vulnerabilities

CVE-2024-6104

go-retryablehttp prior to 0.7.7 did not sanitize urls when writing them to its log file. This could lead to go-retryablehttp writing sensitive HTTP basic auth credentials to its log file. This vulnerability, CVE-2024-6104, was fixed in go-retryablehttp 0.7.7.

CVSS Score

6.0

EPSS Score

0.0

Published

2024-06-24

Page 1

Vulnerabilities

Vulnerable Software

Hashicorp: >> Retryablehttp Security Vulnerabilities

Products

Pricing

Contact Us