VDB
CVE-2025-0167
CVE-2025-0167
PUBLISHED
EPSS 0.33% · 56.4th percentile
Risk Scores
EPSS Score
0.33%
56.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Amazon | curl |
Exploit Intelligence
- CVE-2025-0167: netrc and default credential leak (hackerone)
- CVE-2025-0167: netrc and default credential leak (hackerone)
- CVE-2025-0167: netrc and default credential leak (hackerone)
- CVE-2026-3783: token leak with redirect and netrc (hackerone)
- CVE-2026-3783: token leak with redirect and netrc (hackerone)
- CVE-2026-3783: token leak with redirect and netrc (hackerone)
- https://curl.se/docs/CVE-2025-0167.html (cve.org)
- https://hackerone.com/reports/2917232 (osv)
- CVE-2025-38062.yara (github-yara)
- test_scrapers.py (github-poc)
…and 17 more exploits
Timeline
- CVE Published
- Feb 5, 2025 Coalition ESS Score
- Feb 6, 2025 EPSS Score
- Feb 6, 2025 Coalition ESS Score
- Feb 7, 2025 PoC Published
- Feb 21, 2025 EPSS Score
- Mar 8, 2025 EPSS Score
- Mar 13, 2025 Coalition ESS Score
- Mar 22, 2025 EPSS Score
- Apr 6, 2025 EPSS Score
- Apr 21, 2025 EPSS Score
- May 6, 2025 EPSS Score
References
- ALAS2023-2025-1351: curl (medium) advisory