📦

retryablehttp

Vendor: hashicorp

Login to add this product to WatchStack
Actively Exploited 0 CISA KEV List
PoC / Exploits 0 Code Available
Total RCEs 0 Remote Access
Total CVEs 1 Total Indexed
Avg. EPSS 0.04% Exploit Prob.
Latest CVE CVE-2024-6104 Jun 24

Security Vulnerability Index

Page 1 / 1
6.0 CVSS
CVE-2024-6104

go-retryablehttp prior to 0.7.7 did not sanitize urls when writing them to its log file. This could lead to go-retryablehttp writing sensitive HTTP basic auth credentials to its log file. This vulnerability, CVE-2024-6104, was fixed in go-retryablehttp 0.7.7.

EPSS: 0.04%