HTTPie sessions don't distinguish between cookies and hosts pre-3.1.0, leading to cookie exposure on redirects. Upgrade advise
Reporter | Title | Published | Views | Family All 21 |
---|---|---|---|---|
Mageia | Updated httpie packages fix security vulnerability | 15 Jun 202310:27 | – | mageia |
CVE | CVE-2022-24737 | 7 Mar 202223:15 | – | cve |
OSV | CVE-2022-24737 | 7 Mar 202223:15 | – | osv |
OSV | PYSEC-2022-34 | 7 Mar 202223:15 | – | osv |
OSV | Exposure of Sensitive Information to an Unauthorized Actor in httpie | 7 Mar 202223:44 | – | osv |
Fedora | [SECURITY] Fedora 36 Update: httpie-3.1.0-1.fc36 | 26 Mar 202215:44 | – | fedora |
Fedora | [SECURITY] Fedora 35 Update: httpie-3.1.0-1.fc35 | 17 Mar 202215:46 | – | fedora |
Fedora | [SECURITY] Fedora 34 Update: httpie-3.1.0-1.fc34 | 17 Mar 202214:42 | – | fedora |
Veracode | Information Disclosure | 8 Mar 202206:52 | – | veracode |
OpenVAS | Fedora: Security Advisory for httpie (FEDORA-2022-cfcad08594) | 23 Mar 202200:00 | – | openvas |
OS | OS Version | Architecture | Package | Package Version | Filename |
---|---|---|---|---|---|
Alpine | 3.15-community | noarch | httpie | 2.5.0-r1 | UNKNOWN |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo