Lucene search
K

PYSEC-2020-148

🗓️ 30 Sep 2020 18:15:00Reported by Python Packaging AdvisoryType 
pypa
 pypa
🔗 github.com👁 6 Views

CRLF injection in urllib3 before 1.25.9 allows an attacker controlling the HTTP method to inject CRLF via putrequest.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
IBM Security Bulletins
Security Bulletin: IBM Maximo Application Suite - IoT uses multiple third party dependencies which is vulnerable to CVEs.
7 Apr 202519:17
ibm
IBM Security Bulletins
Security Bulletin: IBM Watson OpenScale on Cloud Pak for Data is impacted by CVE-2020-26116
11 Mar 202110:59
ibm
IBM Security Bulletins
Security Bulletin: Cloud Pak for Security has several security vulnerabilities addressed in the latest version
30 Jul 202107:38
ibm
IBM Security Bulletins
Security Bulletin: Vulnerability in Python-urllib3 affects IBM Cloud Pak for Data System 2.0 (CPDS2.0)
11 Mar 202413:16
ibm
IBM Security Bulletins
Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities
15 Apr 202503:04
ibm
IBM Security Bulletins
Security Bulletin: Vulnerability in Urllib3 affects IBM Spectrum Protect Container and Microsoft File Systems Agents (CVE-2020-26137)
4 Dec 202006:34
ibm
IBM Security Bulletins
Security Bulletin: IBM QRadar SIEM includes components with known vulnerabilities
6 Jul 202318:48
ibm
IBM Security Bulletins
Security Bulletin: Vulnerability in urllib3 affects IBM Cloud Pak for Data System 1.0(CPDS 1.0)[CVE-2020-26137, CVE-2020-7212, CVE-2021-33503]
3 May 202507:17
ibm
IBM Security Bulletins
Security Bulletin: Multiple security vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak
18 Oct 202214:58
ibm
IBM Security Bulletins
Security Bulletin: Cloud Pak for Security uses packages that are vulnerable to several CVEs
19 Oct 202115:38
ibm
Rows per page
Vulners
Node
urllib3urllib3Range01.25.9

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

14 Oct 2020 05:15Current
9.3High risk
Vulners AI Score9.3
CVSS 26.4
CVSS 3.17.2
EPSS0.0642
6