Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2024:2734
HistoryMay 22, 2024 - 8:31 p.m.

(RHSA-2024:2734) Moderate: Red Hat OpenStack Platform 17.1 (python-urllib3) security update

2024-05-2220:31:21
access.redhat.com
8
red hat
openstack
security update
python-urllib3
redirect vulnerability
cvss score
cve page
http module

7.1 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.8%

JSON

Python HTTP module with connection pooling and file POST abilities.

Security Fix(es):

  • Request body not stripped after redirect from 303 status changes request
    method to GET (CVE-2023-45803)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHat8noarchpython3-urllib3< 1.25.10-6.el8ostpython3-urllib3-1.25.10-6.el8ost.noarch.rpm

Related

openvas 20
github 1
nessus 44
redos 1
wolfi 1
ibm 21
debiancve 1
cgr 1
cvelist 1
redhatcve 1
cbl_mariner 1
alpinelinux 1
fedora 3
osv 12
amazon 1
nvd 1
ubuntucve 1
veracode 1
prion 1
cve 1
oraclelinux 5
almalinux 5
redhat 26
photon 1
ubuntu 2
rocky 1
cloudfoundry 1
hp 2
oracle 1
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:4468-1)
2023-11-17 00:00:00
openSUSE: Security Advisory for python (SUSE-SU-2023:4467-1)
2024-03-04 00:00:00
Fedora: Security Advisory for python-urllib3 (FEDORA-2023-dede912109)
2023-11-03 00:00:00
github
github
urllib3's request body not stripped after redirect from 303 status changes request method to GET
2023-10-17 20:15:25
nessus
nessus
RHEL 8 : Red Hat OpenStack Platform 17.1 (python-urllib3) (RHSA-2024:2734)
2024-05-22 00:00:00
EulerOS 2.0 SP9 : python-urllib3 (EulerOS-SA-2024-1185)
2024-02-08 00:00:00
EulerOS 2.0 SP9 : python-urllib3 (EulerOS-SA-2024-1205)
2024-02-08 00:00:00
redos
redos
ROS-20240403-11
2024-04-03 00:00:00
wolfi
wolfi
CVE-2023-45803 vulnerabilities
2024-06-16 09:08:15
ibm
ibm
Security Bulletin: IBM Maximo Application Suite - Predict Component uses urllib3-1.26.16-py2.py3-none-any.whl which is vulnerable to CVE-2023-45803 This bulletin contains information regarding the vulnerability and its fixture.
2024-03-04 07:30:11
Security Bulletin: IBM Maximo Application Suite uses urllib3-2.0.3-py3-none-any.whl which is vulnerable to CVE-2023-45803
2024-03-20 11:24:42
Security Bulletin: Vulnerability in urllib3 affects IBM Process Mining CVE-2023-45803
2024-01-05 16:45:02
debiancve
debiancve
CVE-2023-45803
2023-10-17 20:15:10
cgr
cgr
CVE-2023-45803 vulnerabilities
2024-05-19 03:07:16
cvelist
cvelist
CVE-2023-45803 Request body not stripped after redirect in urllib3
2023-10-17 19:43:45
redhatcve
redhatcve
CVE-2023-45803
2023-10-29 14:55:37
cbl_mariner
cbl_mariner
CVE-2023-45803 affecting package python-urllib3 for versions less than 1.26.18-1
2023-11-08 02:07:28
alpinelinux
alpinelinux
CVE-2023-45803
2023-10-17 20:15:10
fedora
fedora
[SECURITY] Fedora 37 Update: python-urllib3-1.26.18-1.fc37
2023-11-03 01:10:53
[SECURITY] Fedora 38 Update: python-urllib3-1.26.18-1.fc38
2023-10-21 01:30:09
[SECURITY] Fedora 39 Update: python-urllib3-1.26.18-1.fc39
2023-11-03 19:01:21
osv
osv
python-urllib3 - security update
2023-11-08 00:00:00
PYSEC-2023-212
2023-10-17 20:15:00
urllib3's request body not stripped after redirect from 303 status changes request method to GET
2023-10-17 20:15:25
amazon
amazon
Medium: python-urllib3
2024-01-03 21:04:00
nvd
nvd
CVE-2023-45803
2023-10-17 20:15:10
ubuntucve
ubuntucve
CVE-2023-45803
2023-10-17 00:00:00
veracode
veracode
Information Disclosure
2023-10-19 07:19:20
prion
prion
Design/Logic Flaw
2023-10-17 20:15:00
cve
cve
CVE-2023-45803
2023-10-17 20:15:10
oraclelinux
oraclelinux
python-urllib3 security update
2024-01-25 00:00:00
python-urllib3 security update
2024-01-10 00:00:00
fence-agents security and bug fix update
2024-05-02 00:00:00
almalinux
almalinux
Moderate: python-urllib3 security update
2024-01-25 00:00:00
Moderate: python-urllib3 security update
2024-01-10 00:00:00
Moderate: resource-agents security and bug fix update
2024-05-22 00:00:00
redhat
redhat
(RHSA-2024:0300) Moderate: python-urllib3 security update
2024-01-18 16:12:51
(RHSA-2024:0464) Moderate: python-urllib3 security update
2024-01-24 14:41:03
(RHSA-2024:0116) Moderate: python-urllib3 security update
2024-01-10 09:25:48
photon
photon
Moderate Photon OS Security Update - PHSA-2024-5.0-0211
2024-02-16 00:00:00
ubuntu
ubuntu
pip vulnerabilities
2023-11-15 00:00:00
urllib3 vulnerabilities
2023-11-07 00:00:00
rocky
rocky
fence-agents security and bug fix update
2024-06-14 13:59:30
cloudfoundry
cloudfoundry
USN-6473-1: urllib3 vulnerabilities | Cloud Foundry
2023-11-09 00:00:00
hp
hp
HP ThinPro 8.1 SP 2 Security Updates
2024-04-12 00:00:00
HP ThinPro 8.0 SP 8 Security Updates
2024-03-01 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2024
2024-04-16 00:00:00

7.1 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.8%

JSON
Related for RHSA-2024:2734
openvas20github1nessus44redos1wolfi1ibm21debiancve1cgr1cvelist1redhatcve1cbl_mariner1alpinelinux1fedora3osv12amazon1nvd1ubuntucve1veracode1prion1cve1oraclelinux5almalinux5redhat26photon1ubuntu2rocky1cloudfoundry1hp2oracle1