Lucene search
K

60 matches found

OSV
OSV
added 2026/06/23 9:47 a.m.7 views

ROOT-APP-PYPI-CVE-2020-26137 CVE-2020-26137 in rootio-urllib3 - Patched by Root

Root has patched CVE-2020-26137 in the rootio-urllib3 package for Root:PyPI. Multiple fixed versions available...

6.5CVSS8.2AI score0.02269EPSS
Exploits0
OSV
OSV
added 2026/05/18 1:25 p.m.83 views

CLEANSTART-2026-SV37938 Security fixes for CVE-2020-26137 applied in versions: 1.25.9-r0, 1.26.17-r0, 1.26.18-r0, 1.26.4-r0

Security vulnerability affects the py3-urllib3 package. This issue is resolved in later releases. See references for vulnerability details...

6.5CVSS6.9AI score0.02269EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/05/03 7:17 a.m.26 views

Security Bulletin: Vulnerability in urllib3 affects IBM Cloud Pak for Data System 1.0(CPDS 1.0)[CVE-2020-26137, CVE-2020-7212, CVE-2021-33503]

Summary The urllib3 package is used by IBM Cloud Pak for Data System 1.0. IBM Cloud Pak for Data System 1.0 has addressed the applicable CVE CVE-2020-26137, CVE-2020-7212, CVE-2021-33503. Vulnerability Details CVEID:CVE-2020-26137 DESCRIPTION: urllib3 is vulnerable to CRLF injection. By inserting...

7.8CVSS7.1AI score0.03288EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.17 views

RHEL 6 : python-urllib3 (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - python-urllib3: CRLF injection via HTTP request method CVE-2020-26137 - python-urllib3: Cookie request...

8.5AI score0.02269EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/03/11 1:16 p.m.33 views

Security Bulletin: Vulnerability in Python-urllib3 affects IBM Cloud Pak for Data System 2.0 (CPDS2.0)

Summary Python-urllib3 is used by IBM Cloud Pak for Data System 2.0. IBM Cloud Pak for Data System 2.0 has addressed the applicable CVEsCVE-2020-26137,CVE-2020-7212, CVE-2021-33503. Vulnerability Details CVEID:CVE-2020-26137 DESCRIPTION: urllib3 is vulnerable to CRLF injection. By inserting CR an...

7.8CVSS7.2AI score0.03288EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/02/29 8:16 p.m.33 views

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to CRLF injection in Python urllib3 [CVE-2020-26137]

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to CRLF injection in Python urllib3, by an attacker's ability to insert CR and LF control characters in the first argument of putrequest CVE-2020-26137. Python urllib3 is included as a component of our Speech...

6.5CVSS6.8AI score0.02269EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/02/28 3:27 p.m.46 views

Security Bulletin: IBM Spectrum Symphony with urllib3 could allow a remote attacker to obtain sensitive information

Summary IBM Spectrum Symphony with urllib3 could allow a remote attacker to obtain sensitive information Vulnerability Details CVEID:CVE-2018-25091 DESCRIPTION: urllib3 could allow a remote attacker to obtain sensitive information, caused by not removing the authorization HTTP header when followi...

8.1CVSS7.7AI score0.03273EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2023/10/09 12:0 a.m.28 views

Debian: Security Advisory (DLA-3610-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.8AI score0.02836EPSS
Exploits1References4
Debian
Debian
added 2023/10/08 11:6 a.m.187 views

[SECURITY] [DLA 3610-1] python-urllib3 security update

Debian LTS Advisory DLA-3610-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin October 08, 2023 https://wiki.debian.org/LTS Package : python-urllib3 Version : 1.24.1-1+deb10u1 CVE ID : CVE-2019-11236 CVE-2019-11324 CVE-2020-26137 CVE-2023-43804 Debian Bug : 927172...

9.8CVSS6.7AI score0.0642EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2023/10/08 12:0 a.m.33 views

Debian dla-3610 : python-urllib3 - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3610 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3610-1 [email protected]...

9.8CVSS7.2AI score0.0642EPSS
Exploits3References16
IBM Security Bulletins
IBM Security Bulletins
added 2023/08/21 5:54 p.m.43 views

Security Bulletin: A vulnerability in urlib3 affects IBM Robotic Process Automation for Cloud Pak which may result in CRLF injection (CVE-2020-26137).

Summary urlib3 is used by IBM Robotic Process Automation for Cloud Pak as part of OCR and AntiVirus container images. CVE-2020-26137 Vulnerability Details CVEID:CVE-2020-26137 DESCRIPTION: urllib3 is vulnerable to CRLF injection. By inserting CR and LF control characters in the first argument of...

6.5CVSS6.8AI score0.02269EPSS
Exploits0Affected Software1
Cent OS
Cent OS
added 2022/08/02 7:15 p.m.624 views

python, tkinter security update

CentOS Errata and Security Advisory CESA-2022:5235 An update for python is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9.8CVSS7AI score0.23293EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2022/08/02 12:0 a.m.80 views

CentOS 7 : python (RHSA-2022:5235)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:5235 advisory. - http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker contro...

9.8CVSS8.4AI score0.23293EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2022/06/29 12:0 a.m.68 views

Scientific Linux Security Update : python on SL7.x i686/x86_64 (2022:5235)

The remote Scientific Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the SLSA-2022:5235-1 advisory. - python: CRLF injection via HTTP request method in httplib/http.client CVE-2020-26116 - python-urllib3: CRLF injection via HTTP request method...

9.8CVSS7.7AI score0.23293EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2022/06/28 10:5 a.m.97 views

Moderate: Red Hat Security Advisory: python security update

An update for python is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

9.8CVSS7AI score0.23293EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.33 views

AlmaLinux 8 : python-urllib3 (ALSA-2021:1631)

The remote AlmaLinux 8 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2021:1631 advisory. - urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the...

6.5CVSS7.3AI score0.02269EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.31 views

Mageia: Security Advisory (MGASA-2021-0055)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.3AI score0.02269EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/10/27 12:0 a.m.42 views

NewStart CGSL MAIN 6.02 : python-urllib3 Vulnerability (NS-SA-2021-0130)

The remote NewStart CGSL host, running version MAIN 6.02, has python-urllib3 packages installed that are affected by a vulnerability: - urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the...

6.5CVSS7.3AI score0.02269EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/09/30 12:0 a.m.50 views

SUSE SLED12 / SLES12 Security Update : python-urllib3 (SUSE-SU-2021:3251-1)

The remote SUSE Linux SLED12 / SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2021:3251-1 advisory. This update for python-urllib3 fixes the following security issue: - CVE-2020-26137: A CRLF injection via HTTP request method was...

6.5CVSS6.9AI score0.02269EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/09/30 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2021:3251-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS8.5AI score0.02269EPSS
Exploits0References4
Rows per page
Query Builder