CVE-2026-7168
published 2026-05-13CVE-2026-7168: Successfully using libcurl to do a transfer over a specific HTTP proxy (`proxyA`) with **Digest** authentication and then changing the proxy host to a second…
PriorityP430medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
EPSS
0.11%
29.7th percentile
Successfully using libcurl to do a transfer over a specific HTTP proxy
(`proxyA`) with **Digest** authentication and then changing the proxy host to
a second one (`proxyB`) for a second transfer, reusing the same handle, makes
libcurl wrongly pass on the `Proxy-Authorization:` header field meant for
`proxyA`, to `proxyB`.
Affected
168 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| curl | curl | 7.12.0 – 7.12.0 | — |
| curl | curl | 7.12.1 – 7.12.1 | — |
| curl | curl | 7.12.2 – 7.12.2 | — |
| curl | curl | 7.12.3 – 7.12.3 | — |
| curl | curl | 7.13.0 – 7.13.0 | — |
| curl | curl | 7.13.1 – 7.13.1 | — |
| curl | curl | 7.13.2 – 7.13.2 | — |
| curl | curl | 7.14.0 – 7.14.0 | — |
| curl | curl | 7.14.1 – 7.14.1 | — |
| curl | curl | 7.15.0 – 7.15.0 | — |
| curl | curl | 7.15.1 – 7.15.1 | — |
| curl | curl | 7.15.2 – 7.15.2 | — |
| curl | curl | 7.15.3 – 7.15.3 | — |
| curl | curl | 7.15.4 – 7.15.4 | — |
| curl | curl | 7.15.5 – 7.15.5 | — |
| curl | curl | 7.16.0 – 7.16.0 | — |
| curl | curl | 7.16.1 – 7.16.1 | — |
| curl | curl | 7.16.2 – 7.16.2 | — |
| curl | curl | 7.16.3 – 7.16.3 | — |
| curl | curl | 7.16.4 – 7.16.4 | — |
| curl | curl | 7.17.0 – 7.17.0 | — |
| curl | curl | 7.17.1 – 7.17.1 | — |
| curl | curl | 7.18.0 – 7.18.0 | — |
| curl | curl | 7.18.1 – 7.18.1 | — |
| curl | curl | 7.18.2 – 7.18.2 | — |
CVSS provenance
nvdv3.15.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
vendor_redhat5.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse
vendor_redhat·2026-05-13·CVSS 5.3
CVE-2026-7168 [MEDIUM] CWE-201 curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse
curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse
A flaw was found in libcurl. When a user performs a transfer over an HTTP proxy using Digest authentication and then reuses the same handle for a second transfer with a different proxy host, libcurl incorrectly sends the `Proxy-Authorization` header intended for the first proxy to the second proxy. This could lead to the disclosure of sensitive authentication information to an unintended proxy, potentially allowing an attacker to gain unauthorized access or impersonate the user.
Statement: Moderate: A flaw in libcurl allows for information disclosure when a client reuses a handle for HTTP proxy transfers. If a libcurl application uses Digest authentication with one proxy and then connects to a different
Ubuntu
curl vulnerabilities
vendor_ubuntu·2026-05-04
CVE-2026-4873 curl vulnerabilities
Title: curl vulnerabilities
Summary: curl could be made to expose sensitive information over the network.
It was discovered that curl incorrectly reused non-TLS connections when
TLS was required in some STARTTLS configurations. A remote attacker could
possibly use this issue to obtain sensitive information. (CVE-2026-4873)
It was discovered that curl incorrectly reused certain HTTP Negotiate
connections. A remote attacker could possibly use this issue to obtain
sensitive information. (CVE-2026-5545)
It was discovered that curl incorrectly reused certain SMB connections. A
remote attacker could possibly use this issue to obtain sensitive
information. (CVE-2026-5773)
It was discovered that curl could leak proxy credentials when handling
redirects in some configurations. A remote attacke
GHSA
GHSA-v92m-hrhj-gw54: Successfully using libcurl to do a transfer over a specific HTTP proxy
(`proxyA`) with **Digest** authentication and then changing the proxy host to
a
ghsa_unreviewed·2026-05-13
CVE-2026-7168 [MEDIUM] CWE-294 GHSA-v92m-hrhj-gw54: Successfully using libcurl to do a transfer over a specific HTTP proxy
(`proxyA`) with **Digest** authentication and then changing the proxy host to
a
Successfully using libcurl to do a transfer over a specific HTTP proxy
(`proxyA`) with **Digest** authentication and then changing the proxy host to
a second one (`proxyB`) for a second transfer, reusing the same handle, makes
libcurl wrongly pass on the `Proxy-Authorization:` header field meant for
`proxyA`, to `proxyB`.
VulDB
cURL up to 8.19.0 Cross-Proxy Digest Auth information disclosure (Nessus ID 311422 / WID-SEC-2026-1307)
vuldb·2026-05-01
CVE-2026-7168 [LOW] cURL up to 8.19.0 Cross-Proxy Digest Auth information disclosure (Nessus ID 311422 / WID-SEC-2026-1307)
A vulnerability was found in cURL up to 8.19.0. It has been classified as problematic. Affected by this vulnerability is an unknown functionality of the component Cross-Proxy Digest Auth Handler. The manipulation leads to information disclosure.
This vulnerability is traded as CVE-2026-7168. It is possible to initiate the attack remotely. There is no exploit available.
Upgrading the affected component is recommended.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2026-7168 curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse [fedora-all]
bugzilla·2026-05-20·CVSS 5.3
CVE-2026-7168 [MEDIUM] CVE-2026-7168 curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse [fedora-all]
CVE-2026-7168 curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse [fedora-all]
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
Bugzilla
CVE-2026-7168 mingw-curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse [fedora-all]
bugzilla·2026-05-20·CVSS 5.3
CVE-2026-7168 [MEDIUM] CVE-2026-7168 mingw-curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse [fedora-all]
CVE-2026-7168 mingw-curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse [fedora-all]
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
Bugzilla
CVE-2026-7168 curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse
bugzilla·2026-05-13·CVSS 5.3
CVE-2026-7168 [MEDIUM] CVE-2026-7168 curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse
CVE-2026-7168 curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse
Successfully using libcurl to do a transfer over a specific HTTP proxy
(`proxyA`) with **Digest** authentication and then changing the proxy host to
a second one (`proxyB`) for a second transfer, reusing the same handle, makes
libcurl wrongly pass on the `Proxy-Authorization:` header field meant for
`proxyA`, to `proxyB`.
2026-05-13
Published