Lucene search
K

161 matches found

OSV
OSV
added 2026/06/12 12:25 p.m.13 views

OESA-2026-2631 python-pip security update

%changelog Sat Jul 13 2024 yangyuan [email protected] - 23.3.1-2 - Fix CVE-2023-45803 and CVE-2024-37891 Security Fixes: A flaw was found in pip, the package installer for Python. A remote attacker can exploit this vulnerability by tricking a victim into installing a malicious Python wheel...

8CVSS5.8AI score0.00275EPSS
Exploits0References2
OSV
OSV
added 2026/06/12 12:25 p.m.6 views

OESA-2026-2630 python-pip security update

%changelog Sat Jul 13 2024 yangyuan [email protected] - 23.3.1-2 - Fix CVE-2023-45803 and CVE-2024-37891 Security Fixes: A flaw was found in pip, the package installer for Python. A remote attacker can exploit this vulnerability by tricking a victim into installing a malicious Python wheel...

8CVSS5.8AI score0.00275EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 9 : python-urllib3-1.26.5-3.el9_3.1 (AXSA:2024-7481:02)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-7481:02 advisory. python-urllib3: Cookie request header isn't stripped during cross-origin redirects CVE-2023-43804 urllib3: Request body not stripped after redirect...

8.1CVSS7.6AI score0.01207EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : resource-agents-4.9.0-54.el8 (AXSA:2024-8344:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8344:03 advisory. urllib3: Request body not stripped after redirect from 303 status changes request method to GET CVE-2023-45803 pycryptodome: side-channel leakage fo...

5.9CVSS6.8AI score0.00618EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.2 views

MiracleLinux 9 : python3.11-urllib3-1.26.12-2.el9_5.2 (AXSA:2024-9498:06)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-9498:06 advisory. urllib3: Request body not stripped after redirect from 303 status changes request method to GET CVE-2023-45803 Tenable has extracted the preceding descriptio...

4.2CVSS7.7AI score0.00544EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/12/17 1:46 p.m.6 views

Security Bulletin: Vulnerability in urllib3 affects IBM Cloud Pak for Data System 2.0 (CPDS 2.0)[CVE-2023-43804, CVE-2023-45803]

Summary The urllib3 package is used by IBM Cloud Pak for Data System 2.0 . IBM Cloud Pak for Data System 2.0 has addressed the applicable CVEsCVE-2023-43804, CVE-2023-45803 Vulnerability Details CVEID:CVE-2023-43804 DESCRIPTION: urllib3 is a user-friendly HTTP client library for Python. urllib3...

8.1CVSS6.8AI score0.01207EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-45803

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - urllib3 is a user-friendly HTTP client library for Python. urllib3 previously wouldn't remove the HTTP request body when an HTTP redirect response using status...

4.2CVSS6.7AI score0.00544EPSS
Exploits0References3
CBLMariner
CBLMariner
added 2025/07/18 3:7 p.m.4 views

CVE-2023-45803 affecting package python3 for versions less than 3.9.19-14

CVE-2023-45803 affecting package python3 for versions less than 3.9.19-14. A patched version of the package is available...

4.2CVSS7.2AI score0.00544EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.6 views

TencentOS Server 3: resource-agents (TSSA-2024:0387)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0387 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

5.9CVSS7.1AI score0.00618EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.9 views

TencentOS Server 4: python-urllib3 (TSSA-2025:0061)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0061 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

8.1CVSS7.1AI score0.01207EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.5 views

TencentOS Server 3: python-urllib3 (TSSA-2024:0017)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0017 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

8.1CVSS7.1AI score0.01207EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.5 views

TencentOS Server 3: python3.11-urllib3 (TSSA-2024:1142)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:1142 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

4.2CVSS6.9AI score0.00544EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/05/19 12:0 a.m.5 views

Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2025-1451)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.7AI score0.01141EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/05/19 12:0 a.m.8 views

Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2025-1480)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.7AI score0.01141EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.3 views

Alibaba Cloud Linux 3 : 0182: python-urllib3 (ALINUX3-SA-2024:0182)

The remote Alibaba Cloud Linux 3 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0182 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-43804: urllib3 is a user-friendly...

8.1CVSS6.8AI score0.01207EPSS
Exploits1References4
Rockylinux
Rockylinux
added 2025/05/07 7:11 p.m.4 views

python3.11-urllib3 security update

An update is available for python3.11-urllib3. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The python-urllib3 package provides the Python HTTP module with...

4.2CVSS6.2AI score0.00544EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2025/05/03 12:32 p.m.16 views

Security Bulletin: Vulnerability in urllib3 affects IBM Cloud Pak for Data System 1.0(CPDS 1.0)[CVE-2023-43804, CVE-2023-45803].

Summary The urllib3 package is used by IBM Cloud Pak for Data System 1.0. IBM Cloud Pak for Data System 1.0 has addressed the applicable CVE CVE-2023-43804, CVE-2023-45803. Vulnerability Details CVEID:CVE-2023-43804 DESCRIPTION: urllib3 is a user-friendly HTTP client library for Python. urllib3...

8.1CVSS6.1AI score0.01207EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/03/24 6:45 a.m.30 views

Security Bulletin: Multiple Vulnerabilities in IBM Concert Software.

Summary Multiple vulnerabilities were addressed in IBM Concert Software version 1.0.5 Vulnerability Details CVEID:CVE-2023-39326 DESCRIPTION: Golang Go could allow a remote attacker to obtain sensitive information, caused by a flaw in the net/http package. By sending a specially crafted HTTP...

8.1CVSS8.9AI score0.91969EPSS
Exploits3Affected Software1
OSV
OSV
added 2025/03/17 8:16 p.m.21 views

RLSA-2024:11238 Moderate: python3.11-urllib3 security update

The python-urllib3 package provides the Python HTTP module with connection pooling and file POST abilities. Security Fixes: urllib3: Request body not stripped after redirect from 303 status changes request method to GET CVE-2023-45803 For more details about the security issues, including the...

4.2CVSS7AI score0.00544EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2025/03/17 8:16 p.m.2 views

python3.11-urllib3 security update

An update is available for python3.11-urllib3. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The python-urllib3 package provides the Python HTTP module with...

4.2CVSS7.3AI score0.00544EPSS
Exploits0
Rows per page
Query Builder