HashiCorp Retryablehttp
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in HashiCorp Retryablehttp.
By the Year
In 2026 there have been 0 vulnerabilities in HashiCorp Retryablehttp. Retryablehttp did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 1 | 5.50 |
It may take a day or so for new Retryablehttp vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent HashiCorp Retryablehttp Security Vulnerabilities
HashiCorp go-retryablehttp <0.7.7 logs Basic Auth creds (CVE-2024-6104)
CVE-2024-6104
5.5 - Medium
- June 24, 2024
go-retryablehttp prior to 0.7.7 did not sanitize urls when writing them to its log file. This could lead to go-retryablehttp writing sensitive HTTP basic auth credentials to its log file. This vulnerability, CVE-2024-6104, was fixed in go-retryablehttp 0.7.7.
Insertion of Sensitive Information into Log File
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for HashiCorp Retryablehttp or by HashiCorp? Click the Watch button to subscribe.
