Vulnerabilities ›

CVE-2026-6276

High ⚡ Exploit Available

CWE-319 — Weakness Type

                    Published: May 13, 2026                      ·  Modified: May 20, 2026                      ·  Source: NVD                

CVSS v3

7.5

🔗 NVD Official

📄 Description (English)

Using libcurl, when a custom `Host:` header is first set for an HTTP request
and a second request is subsequently done using the same *easy handle* but
without the custom `Host:` header set, the second request would use stale
information and pass on cookies meant for the first host in the second
request. Leak them.

🤖 AI Executive Summary

CVE-2026-6276 is a cookie leakage vulnerability in libcurl where reusing an easy handle without resetting a custom Host header causes cookies from the first request to be sent to the second host. This affects applications that make multiple HTTP requests with the same connection handle, potentially exposing sensitive session data.

📄 Description (Arabic)

يحدث هذا الضعف عندما يتم إعادة استخدام مقبض libcurl الذي تم تعيين رأس Host مخصص له دون إعادة تعيينه للطلب الثاني، مما يؤدي إلى تمرير ملفات تعريف الارتباط المخصصة للمضيف الأول إلى المضيف الثاني. يؤثر هذا على التطبيقات التي تقوم بطلبات HTTP متعددة باستخدام نفس كائن الاتصال.

🤖 ملخص تنفيذي (AI)

A cookie leakage vulnerability in libcurl allows sensitive cookies from one host to be leaked to another host when reusing connection handles without properly resetting custom Host headers. This impacts applications making sequential HTTP requests with shared connection objects.

🤖 AI Intelligence Analysis Analyzed: May 20, 2026 09:14

🇸🇦 Saudi Arabia Impact Assessment

Saudi Relevance: high

🏢 Affected Saudi Sectors

banking telecom government healthcare

🎯 MITRE ATT&CK Techniques

T1539 T1555 T1187

⚖️ Saudi Risk Score (AI)

7.0

/ 10.0

🔧 Remediation Steps (English)

Update libcurl to the latest patched version immediately. Review and audit all applications using libcurl for proper connection handle management. Implement separate easy handles for requests to different hosts or explicitly reset Host headers between requests. Enable HTTP cookie security policies and implement additional session validation mechanisms.

🔧 خطوات المعالجة (العربية)

قم بتحديث libcurl إلى أحدث إصدار معدل فوراً. راجع جميع التطبيقات التي تستخدم libcurl للتأكد من إدارة صحيحة لمقابض الاتصال. استخدم مقابض منفصلة للطلبات إلى مضيفين مختلفين أو أعد تعيين رؤوس Host بشكل صريح. طبق سياسات أمان ملفات تعريف الارتباط وآليات التحقق من الجلسة الإضافية.

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

5.1 5.2 6.1

🔵 SAMA CSF

AC-3 AC-4 SI-7

🟡 ISO 27001:2022

A.6.1.1 A.13.1.1 A.13.1.3

🔗 References & Sources 5

🔗

https://curl.se/docs/CVE-2026-6276.html

2499f714-1537-4658-8207-48ae4bb9eae9

Patch Vendor Advisory

🔗

https://curl.se/docs/CVE-2026-6276.json

2499f714-1537-4658-8207-48ae4bb9eae9

Product

🔗

https://hackerone.com/reports/3671818

2499f714-1537-4658-8207-48ae4bb9eae9

Exploit Issue Tracking Third Party Advisory

🔗

http://www.openwall.com/lists/oss-security/2026/04/29/13

af854a3a-2127-422b-91ae-364da2661108

Mailing List Third Party Advisory

🔗

https://hackerone.com/reports/3671818

134c704f-9b21-4f2e-91b3-4a467353bcc0

Exploit Issue Tracking Third Party Advisory

📦 Affected Products / CPE 1 entries

haxx:curl

📊 CVSS Score

7.5

/ 10.0 — High

📊 CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack VectorN — None / Network

Attack ComplexityL — Low / Local

Privileges RequiredN — None / Network

User InteractionN — None / Network

ScopeU — Unchanged

ConfidentialityN — None / Network

IntegrityN — None / Network

AvailabilityH — High

📋 Quick Facts

Severity High

CVSS Score7.5

CWECWE-319

EPSS0.02%

Exploit ✓ Yes

Patch ✓ Yes

Published 2026-05-13

Source Feed nvd

🇸🇦 Saudi Risk Score

7.0

/ 10.0 — Saudi Risk

Priority: HIGH

🏷️ Tags

exploit-available patch-available CWE-319

🏢 Vendor Advisories

🔗 https://curl.se/docs/CVE-2026-6276.html

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

CVE-2026-6276

Introduce Yourself

Sign In Required