Sign In

CVE-2025-14524

ADVISORY - nist

Summary

When an OAuth2 bearer token is used for an HTTP(S) transfer, and that transfer performs a cross-protocol redirect to a second URL that uses an IMAP, LDAP, POP3 or SMTP scheme, curl might wrongly pass on the bearer token to the new target host.

EPSS Score: 0.00021 (0.047)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-601

URL Redirection to Untrusted Site ('Open Redirect')

Impacted images

Advisories

Alpine

CREATED

UPDATED

ADVISORY IDCVE-2025-14524
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM ADVISORY
PackageTypeOS NameOS VersionAffected RangesFix Versions
alpine/curlapkalpine3.21<=8.12.1-r1Not yet available
alpine/curlapkalpineedge<8.18.0-r08.18.0-r0
alpine/curlapkalpine3.22<=7.36.0-r0Not yet available
alpine/curlapkalpine3.22<=7.50.1-r0Not yet available
alpine/curlapkalpine3.22<=7.50.2-r0Not yet available
alpine/curlapkalpine3.22<=7.50.3-r0Not yet available
alpine/curlapkalpine3.22<=7.51.0-r0Not yet available
alpine/curlapkalpine3.22<=7.52.1-r0Not yet available
alpine/curlapkalpine3.22<=7.53.0-r0Not yet available
alpine/curlapkalpine3.22<=7.53.1-r2Not yet available
alpine/curlapkalpine3.22<=7.54.0-r0Not yet available
alpine/curlapkalpine3.22<=7.55.0-r0Not yet available
alpine/curlapkalpine3.22<=7.56.1-r0Not yet available
alpine/curlapkalpine3.22<=7.57.0-r0Not yet available
alpine/curlapkalpine3.22<=7.59.0-r0Not yet available
alpine/curlapkalpine3.22<=7.60.0-r0Not yet available
alpine/curlapkalpine3.22<=7.61.0-r0Not yet available
alpine/curlapkalpine3.22<=7.61.1-r0Not yet available
alpine/curlapkalpine3.22<=7.62.0-r0Not yet available
alpine/curlapkalpine3.22<=7.64.0-r0Not yet available
alpine/curlapkalpine3.22<=7.65.0-r0Not yet available
alpine/curlapkalpine3.22<=7.66.0-r0Not yet available
alpine/curlapkalpine3.22<=7.71.0-r0Not yet available
alpine/curlapkalpine3.22<=7.72.0-r0Not yet available
alpine/curlapkalpine3.22<=7.74.0-r0Not yet available
alpine/curlapkalpine3.22<=7.76.0-r0Not yet available
alpine/curlapkalpine3.22<=7.77.0-r0Not yet available
alpine/curlapkalpine3.22<=7.78.0-r0Not yet available
alpine/curlapkalpine3.22<=7.79.0-r0Not yet available
alpine/curlapkalpine3.22<=7.83.0-r0Not yet available
alpine/curlapkalpine3.22<=7.83.1-r0Not yet available
alpine/curlapkalpine3.22<=7.84.0-r0Not yet available
alpine/curlapkalpine3.22<=7.85.0-r0Not yet available
alpine/curlapkalpine3.22<=7.86.0-r0Not yet available
alpine/curlapkalpine3.22<=7.87.0-r0Not yet available
alpine/curlapkalpine3.22<=7.88.0-r0Not yet available
alpine/curlapkalpine3.22<=8.0.0-r0Not yet available
alpine/curlapkalpine3.22<=8.1.0-r0Not yet available
alpine/curlapkalpine3.22<=8.10.0-r0Not yet available
alpine/curlapkalpine3.22<=8.11.0-r0Not yet available
alpine/curlapkalpine3.22<=8.11.1-r0Not yet available
alpine/curlapkalpine3.22<=8.12.0-r0Not yet available
alpine/curlapkalpine3.22<=8.14.0-r0Not yet available
alpine/curlapkalpine3.22<=8.14.1-r0Not yet available
alpine/curlapkalpine3.22<=8.14.1-r1Not yet available
alpine/curlapkalpine3.22<=8.14.1-r2Not yet available
alpine/curlapkalpine3.22<=8.3.0-r0Not yet available
alpine/curlapkalpine3.22<=8.4.0-r0Not yet available
alpine/curlapkalpine3.22<=8.5.0-r0Not yet available
alpine/curlapkalpine3.22<=8.6.0-r0Not yet available
alpine/curlapkalpine3.22<=8.7.1-r0Not yet available
alpine/curlapkalpine3.22<=8.9.0-r0Not yet available
alpine/curlapkalpine3.22<=8.9.1-r0Not yet available
alpine/curlapkalpine3.23<=8.17.0-r1Not yet available
alpine/curlapkalpine3.24<8.18.0-r08.18.0-r0
alpine/curlapkalpine3.21<=7.36.0-r0Not yet available
alpine/curlapkalpine3.21<=7.50.1-r0Not yet available
alpine/curlapkalpine3.21<=7.50.2-r0Not yet available
alpine/curlapkalpine3.21<=7.50.3-r0Not yet available
alpine/curlapkalpine3.21<=7.51.0-r0Not yet available
alpine/curlapkalpine3.21<=7.52.1-r0Not yet available
alpine/curlapkalpine3.21<=7.53.0-r0Not yet available
alpine/curlapkalpine3.21<=7.53.1-r2Not yet available
alpine/curlapkalpine3.21<=7.54.0-r0Not yet available
alpine/curlapkalpine3.21<=7.55.0-r0Not yet available
alpine/curlapkalpine3.21<=7.56.1-r0Not yet available
alpine/curlapkalpine3.21<=7.57.0-r0Not yet available
alpine/curlapkalpine3.21<=7.59.0-r0Not yet available
alpine/curlapkalpine3.21<=7.60.0-r0Not yet available
alpine/curlapkalpine3.21<=7.61.0-r0Not yet available
alpine/curlapkalpine3.21<=7.61.1-r0Not yet available
alpine/curlapkalpine3.21<=7.62.0-r0Not yet available
alpine/curlapkalpine3.21<=7.64.0-r0Not yet available
alpine/curlapkalpine3.21<=7.65.0-r0Not yet available
alpine/curlapkalpine3.21<=7.66.0-r0Not yet available
alpine/curlapkalpine3.21<=7.71.0-r0Not yet available
alpine/curlapkalpine3.21<=7.72.0-r0Not yet available
alpine/curlapkalpine3.21<=7.74.0-r0Not yet available
alpine/curlapkalpine3.21<=7.76.0-r0Not yet available
alpine/curlapkalpine3.21<=7.77.0-r0Not yet available
alpine/curlapkalpine3.21<=7.78.0-r0Not yet available
alpine/curlapkalpine3.21<=7.79.0-r0Not yet available
alpine/curlapkalpine3.21<=7.83.0-r0Not yet available
alpine/curlapkalpine3.21<=7.83.1-r0Not yet available
alpine/curlapkalpine3.21<=7.84.0-r0Not yet available
alpine/curlapkalpine3.21<=7.85.0-r0Not yet available
alpine/curlapkalpine3.21<=7.86.0-r0Not yet available
alpine/curlapkalpine3.21<=7.87.0-r0Not yet available
alpine/curlapkalpine3.21<=7.88.0-r0Not yet available
alpine/curlapkalpine3.21<=8.0.0-r0Not yet available
alpine/curlapkalpine3.21<=8.1.0-r0Not yet available
alpine/curlapkalpine3.21<=8.10.0-r0Not yet available
alpine/curlapkalpine3.21<=8.11.0-r0Not yet available
alpine/curlapkalpine3.21<=8.11.0-r2Not yet available
alpine/curlapkalpine3.21<=8.11.1-r0Not yet available
alpine/curlapkalpine3.21<=8.11.1-r1Not yet available
alpine/curlapkalpine3.21<=8.12.0-r0Not yet available
alpine/curlapkalpine3.21<=8.12.1-r0Not yet available
alpine/curlapkalpine3.21<=8.14.0-r0Not yet available
alpine/curlapkalpine3.21<=8.14.1-r0Not yet available
alpine/curlapkalpine3.21<=8.14.1-r2Not yet available
alpine/curlapkalpine3.21<=8.3.0-r0Not yet available
alpine/curlapkalpine3.21<=8.4.0-r0Not yet available
alpine/curlapkalpine3.21<=8.5.0-r0Not yet available
alpine/curlapkalpine3.21<=8.6.0-r0Not yet available
alpine/curlapkalpine3.21<=8.7.1-r0Not yet available
alpine/curlapkalpine3.21<=8.9.0-r0Not yet available
alpine/curlapkalpine3.21<=8.9.1-r0Not yet available
alpine/curlapkalpine3.20<=7.36.0-r0Not yet available
alpine/curlapkalpine3.20<=7.50.1-r0Not yet available
alpine/curlapkalpine3.20<=7.50.2-r0Not yet available
alpine/curlapkalpine3.20<=7.50.3-r0Not yet available
alpine/curlapkalpine3.20<=7.51.0-r0Not yet available
alpine/curlapkalpine3.20<=7.52.1-r0Not yet available
alpine/curlapkalpine3.20<=7.53.0-r0Not yet available
alpine/curlapkalpine3.20<=7.53.1-r2Not yet available
alpine/curlapkalpine3.20<=7.54.0-r0Not yet available
alpine/curlapkalpine3.20<=7.55.0-r0Not yet available
alpine/curlapkalpine3.20<=7.56.1-r0Not yet available
alpine/curlapkalpine3.20<=7.57.0-r0Not yet available
alpine/curlapkalpine3.20<=7.59.0-r0Not yet available
alpine/curlapkalpine3.20<=7.60.0-r0Not yet available
alpine/curlapkalpine3.20<=7.61.0-r0Not yet available
alpine/curlapkalpine3.20<=7.61.1-r0Not yet available
alpine/curlapkalpine3.20<=7.62.0-r0Not yet available
alpine/curlapkalpine3.20<=7.64.0-r0Not yet available
alpine/curlapkalpine3.20<=7.65.0-r0Not yet available
alpine/curlapkalpine3.20<=7.66.0-r0Not yet available
alpine/curlapkalpine3.20<=7.71.0-r0Not yet available
alpine/curlapkalpine3.20<=7.72.0-r0Not yet available
alpine/curlapkalpine3.20<=7.74.0-r0Not yet available
alpine/curlapkalpine3.20<=7.76.0-r0Not yet available
alpine/curlapkalpine3.20<=7.77.0-r0Not yet available
alpine/curlapkalpine3.20<=7.78.0-r0Not yet available
alpine/curlapkalpine3.20<=7.79.0-r0Not yet available
alpine/curlapkalpine3.20<=7.83.0-r0Not yet available
alpine/curlapkalpine3.20<=7.83.1-r0Not yet available
alpine/curlapkalpine3.20<=7.84.0-r0Not yet available
alpine/curlapkalpine3.20<=7.85.0-r0Not yet available
alpine/curlapkalpine3.20<=7.86.0-r0Not yet available
alpine/curlapkalpine3.20<=7.87.0-r0Not yet available
alpine/curlapkalpine3.20<=7.88.0-r0Not yet available
alpine/curlapkalpine3.20<=8.0.0-r0Not yet available
alpine/curlapkalpine3.20<=8.1.0-r0Not yet available
alpine/curlapkalpine3.20<=8.10.0-r0Not yet available
alpine/curlapkalpine3.20<=8.11.0-r0Not yet available
alpine/curlapkalpine3.20<=8.11.0-r2Not yet available
alpine/curlapkalpine3.20<=8.11.1-r0Not yet available
alpine/curlapkalpine3.20<=8.11.1-r1Not yet available
alpine/curlapkalpine3.20<=8.12.0-r0Not yet available
alpine/curlapkalpine3.20<=8.12.1-r0Not yet available
alpine/curlapkalpine3.20<=8.14.0-r0Not yet available
alpine/curlapkalpine3.20<=8.14.1-r0Not yet available
alpine/curlapkalpine3.20<=8.14.1-r2Not yet available
alpine/curlapkalpine3.20<=8.3.0-r0Not yet available
alpine/curlapkalpine3.20<=8.4.0-r0Not yet available
alpine/curlapkalpine3.20<=8.5.0-r0Not yet available
alpine/curlapkalpine3.20<=8.6.0-r0Not yet available
alpine/curlapkalpine3.20<=8.7.1-r0Not yet available
alpine/curlapkalpine3.20<=8.9.0-r0Not yet available
alpine/curlapkalpine3.20<=8.9.1-r0Not yet available

Severity and metrics

No CVSS data available from this advisory.

NIST

CREATED

UPDATED

ADVISORY IDCVE-2025-14524
EXPLOITABILITY SCORE

1.6

EXPLOITS FOUND
COMMON WEAKNESS ENUMERATION (CWE)
CWE-601

CVSS SCORE

5.3medium

Debian

CREATED

UPDATED

ADVISORY IDCVE-2025-14524
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM ADVISORY

Ubuntu

CREATED

UPDATED

ADVISORY IDCVE-2025-14524
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

minimos

CREATED

UPDATED

ADVISORY ID

MINI-49mw-4m7j-pp8g

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM ADVISORY