Lucene search
K

118 matches found

OSV
OSV
added 2026/06/08 2:58 p.m.8 views

CLEANSTART-2026-NN42198 Security fixes for CVE-2024-35195, CVE-2024-47081, CVE-2025-8869, CVE-2026-1703, CVE-2026-25645, CVE-2026-3219, CVE-2026-44431, CVE-2026-44432, CVE-2026-45409, CVE-2026-48710, CVE-2026-6357, ghsa-58qw-9mgm-455v, ghsa-65pc-fj4g-8rjx, ghsa-jp4c-xjxw-mgf9, ghsa-mf9v-mfxr-j63j, ghsa-qccp-gfcp-xxvc applied in versions: 1.25.2-r0, 2.2.3-r0, 2.2.3-r1

Multiple security vulnerabilities affect the k8s-sidecar package. These issues are resolved in later releases. See references for individual vulnerability details...

8.9CVSS6.5AI score0.01438EPSS
Exploits4References28
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/22 6:11 a.m.7 views

Security Bulletin: IBM InfoSphere Optim Archive Viewer is affected by a vulnerability in requests (CVE-2024-47081)

Summary A vulnerability in the requests library CVE-2024-47081 used by IBM InfoSphere Optim Archive Viewer has been addressed by upgrading to version 2.32.5. Vulnerability Details CVEID:CVE-2024-47081 DESCRIPTION: Requests is a HTTP library. Due to a URL parsing issue, Requests releases prior to...

5.3CVSS5.7AI score0.00846EPSS
Exploits1Affected Software1
OPENSUSE Linux
OPENSUSE Linux
added 2026/04/14 12:0 a.m.3 views

oci-cli-3.76.2-1.1 on GA media (moderate)

oci-cli-3.76.2-1.1 on GA media Announcement ID: openSUSE-SU-2026:10539-1 Rating: moderate Cross-References: CVE-2024-37891 CVE-2024-47081 CVE-2025-47273 CVE-2025-50181 CVE-2025-66418 CVE-2026-21441 CVE-2026-26007 CVSS scores: CVE-2024-37891 SUSE : 4.4 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N...

8.7CVSS6.8AI score0.02667EPSS
Exploits7
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/27 11:53 a.m.6 views

Security Bulletin: IBM Cloud Pak for Data System 2.0 is affected by credential leakage due to requests library

Summary The requests library is used by IBM Cloud Pak for Data System 2.0 as an HTTP library for Python applications. CVE-2024-47081 affects the requests library's URL parsing mechanism where a vulnerability allows .netrc credentials to be leaked to third parties when processing specific...

5.3CVSS5.8AI score0.00846EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2026/03/16 12:0 a.m.5 views

Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2026-1457)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS5.8AI score0.02782EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.4 views

MiracleLinux 8 : fence-agents-4.2.1-129.el8_10.14 (AXSA:2025-10817:10)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10817:10 advisory. requests: Requests vulnerable to .netrc credentials leak via malicious URLs CVE-2024-47081 Tenable has extracted the preceding description block directly fr...

5.3CVSS6.9AI score0.00846EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.3 views

MiracleLinux 8 : python-requests-2.20.0-6.el8_10 (AXSA:2025-10703:04)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10703:04 advisory. requests: Requests vulnerable to .netrc credentials leak via malicious URLs CVE-2024-47081 Tenable has extracted the preceding description block directly fr...

5.3CVSS7AI score0.00846EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/12/19 12:0 a.m.4 views

Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2025-2596)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.7AI score0.00846EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.21 views

EulerOS Virtualization 2.13.1 : python-pip (EulerOS-SA-2025-2561)

According to the versions of the python-pip packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Requests is a HTTP library. Due to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third...

5.3CVSS6.9AI score0.00846EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/12/15 12:0 a.m.1 views

RHEL 8 : resource-agents (RHSA-2025:14999)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:14999 advisory. The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several servic...

5.3CVSS7AI score0.00846EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/11/22 12:0 a.m.2 views

EulerOS 2.0 SP13 : python-pip (EulerOS-SA-2025-2453)

According to the versions of the python-pip packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Requests is a HTTP library. Due to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third parties for...

5.3CVSS7AI score0.00846EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/11/21 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2025-2453)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.7AI score0.00846EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/11/20 2:25 p.m.4 views

Security Bulletin: Astronomer with IBM is vulnerable to leaked credentials due to the requests package (CVE-2024-47081).

Summary Requests is used by Astronomer with IBM as part of the HTTP processing functionality. Vulnerability Details CVEID:CVE-2024-47081 DESCRIPTION: Requests is a HTTP library. Due to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third parties for specific...

5.3CVSS6AI score0.00846EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2025/11/12 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2025-2427)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.7AI score0.00846EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/11/12 12:0 a.m.4 views

Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2025-2399)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.7AI score0.00846EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/11/12 12:0 a.m.2 views

Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2025-2340)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.7AI score0.00846EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/11/03 10:48 a.m.3 views

Security Bulletin: IBM Edge Data Collector uses requests-2.32.2-py3-none-any.whl which is vulnerable to CVE-2024-47081.

Summary IBM Edge Data Collector uses requests-2.32.2-py3-none-any.whl which is vulnerable to CVE-2024-47081. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2024-47081 DESCRIPTION: Requests is a HTTP library. Due to a URL parsing...

5.3CVSS6.6AI score0.00846EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/31 6:23 p.m.9 views

Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to Insufficiently Protected Credentials in Requests [CVE-2024-47081]

Summary IBM Watson Speech Services Cartridge is vulnerable to Insufficiently Protected Credentials in Requests, due to a URL parsing issue CVE-2024-47081. Requests is used in our speech runtimes This vulnerabilitiy has been addressed. Please read the details for remediation below. Vulnerability...

5.3CVSS6.2AI score0.00846EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/29 10:51 a.m.3 views

Security Bulletin: IBM watsonx Orchestrate Developer Edition affected by vulnerability in python3-pip-wheel requests

Summary Security Bulletin: IBM watsonx Orchestrate Developer Edition affected by vulnerability in python3-pip-wheel requests Vulnerability Details CVEID:CVE-2024-47081 DESCRIPTION: Requests is a HTTP library. Due to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credential...

5.3CVSS6.1AI score0.00846EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/29 10:50 a.m.3 views

Security Bulletin: IBM watsonx Orchestrate Developer Edition affected by vulnerability in python3-pip-wheel python3.12-pip python3.12-pip-wheel requests

Summary Security Bulletin: IBM watsonx Orchestrate Developer Edition affected by vulnerability in python3-pip-wheel python3.12-pip python3.12-pip-wheel requests Vulnerability Details CVEID:CVE-2024-47081 DESCRIPTION: Requests is a HTTP library. Due to a URL parsing issue, Requests releases prior ...

5.3CVSS6.1AI score0.00846EPSS
Exploits1Affected Software1
Rows per page
Query Builder