VulnerableCode Package Details - pkg:deb/debian/httpcomponents-client@4.1.1-1?distro=trixie

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/httpcomponents-client@4.1.1-1?distro=trixie

purl	pkg:deb/debian/httpcomponents-client@4.1.1-1?distro=trixie

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-qyy2-d6f6-gbaq	Apache HttpClient 4.x before 4.1.1 in Apache HttpComponents, when used with an authenticating proxy server, sends the Proxy-Authorization header to the origin server, which allows remote web servers to obtain sensitive information by logging this header.	CVE-2011-1498 GHSA-gw85-4gmf-m7rh

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-05-02T06:18:11.185365+00:00	Debian Importer	Fixing	VCID-qyy2-d6f6-gbaq	https://security-tracker.debian.org/tracker/data/json	38.6.0
2026-04-16T12:36:52.059321+00:00	Debian Importer	Fixing	VCID-qyy2-d6f6-gbaq	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T08:38:30.174358+00:00	Debian Importer	Fixing	VCID-qyy2-d6f6-gbaq	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:26:39.261519+00:00	Debian Importer	Fixing	VCID-qyy2-d6f6-gbaq	https://security-tracker.debian.org/tracker/data/json	38.1.0