Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

789 matches found

OpenVAS
OpenVASadded 2019/05/22 12:0 a.m.307 views

Ubuntu: Security Advisory (USN-3990-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.5AI score0.01015EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2019/05/21 12:0 a.m.251 views

Amazon Linux 2 : python-urllib3 (ALAS-2019-1211)

urllib3 before version 1.23 does not remove the Authorization HTTP header when following a cross-origin redirect i.e., a redirect that differs in host, port, or scheme. This can allow for credentials in the Authorization header to be exposed to unintended hosts or transmitted in...

9.8CVSS6.8AI score0.00656EPSS
Exploits0References2
Amazon
Amazonadded 2019/05/16 12:0 a.m.74 views

Low: python-urllib3

Issue Overview: urllib3 before version 1.23 does not remove the Authorization HTTP header when following a cross-origin redirect i.e., a redirect that differs in host, port, or scheme. This can allow for credentials in the Authorization header to be exposed to unintended hosts or transmitted in...

9.8CVSS8.3AI score0.00656EPSS
Exploits0
OpenVAS
OpenVASadded 2019/05/07 12:0 a.m.82 views

Fedora Update for python-urllib3 FEDORA-2019-a6c56f9756

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.4AI score0.00656EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2019/05/02 12:0 a.m.39 views

Fedora 30 : python-urllib3 (2019-6afaa38e7b)

Fix an issue similar to CVE-2018-20060 where the authorization header was removed only when the case matched. - Fix an issue where the system CA bundle was loaded even when an alternate bundle was explicitly specified https://www.openwall.com/lists/oss-security/2019/04/17/ 3 Full changelog at:...

9.8CVSS6.8AI score0.00656EPSS
Exploits0References3
OpenVAS
OpenVASadded 2019/04/30 12:0 a.m.46 views

Fedora Update for python-urllib3 FEDORA-2019-8560719e80

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.4AI score0.00656EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2019/04/30 12:0 a.m.23 views

Fedora 28 : python-urllib3 (2019-8560719e80)

Fix an issue similar to CVE-2018-20060 where the authorization header was removed only when the case matched. - Fix an issue where the system CA bundle was loaded even when an alternate bundle was explicitly specified https://www.openwall.com/lists/oss-security/2019/04/17/ 3 Full changelog at:...

9.8CVSS6.8AI score0.00656EPSS
Exploits0References3
Fedora
Fedoraadded 2019/04/27 9:35 p.m.46 views

[SECURITY] Fedora 30 Update: python-urllib3-1.24.2-1.fc30

Python HTTP module with connection pooling and file POST abilities...

9.8CVSS0.2AI score0.00656EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2019/04/24 12:0 a.m.39 views

Fedora 29 : python-urllib3 (2019-a6c56f9756)

Fix an issue similar to CVE-2018-20060 where the authorization header was removed only when the case matched. - Fix an issue where the system CA bundle was loaded even when an alternate bundle was explicitly specified https://www.openwall.com/lists/oss-security/2019/04/17/ 3 Full changelog at:...

9.8CVSS6.8AI score0.00656EPSS
Exploits0References3
OSV
OSVadded 2019/04/15 3:29 p.m.1 views

DEBIAN-CVE-2019-11236

In the urllib3 library through 1.24.1 for Python, CRLF injection is possible if the attacker controls the request parameter...

6.1CVSS7.4AI score0.00609EPSS
Exploits1References1
OpenVAS
OpenVASadded 2019/02/13 12:0 a.m.23 views

openSUSE: Security Advisory for python-urllib3 (openSUSE-SU-2019:0159-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

3.7CVSS4.5AI score0.00038EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2019/02/13 12:0 a.m.53 views

openSUSE Security Update : python-urllib3 (openSUSE-2019-159)

This update for python-urllib3 fixes the following issues : python-urllib3 was updated to version 1.22 fate326733, bsc1110422 and contains new features and lots of bugfixes : The full changelog can be found on : https://github.com/Lukasa/urllib3/blob/1.22/CHANGES.rst Security issues fixed : -...

3.7CVSS5.6AI score0.00038EPSS
Exploits0References6
OPENSUSE Linux
OPENSUSE Linuxadded 2019/02/12 12:0 a.m.120 views

Security update for python-urllib3 (moderate)

openSUSE Security Update: Security update for python-urllib3 Announcement ID: openSUSE-SU-2019:0159-1 Rating: moderate References: 1024540 1074247 1110422 Cross-References: CVE-2016-9015 Affected Products: openSUSE Leap 42.3 An update that solves one vulnerability and has two fixes is now...

3.7CVSS5.8AI score0.00038EPSS
Exploits0References3
OSV
OSVadded 2019/01/21 2:54 p.m.6 views

SUSE-SU-2019:0139-1 Security update for python-urllib3

This update for python-urllib3 fixes the following issues: python-urllib3 was updated to version 1.22 fate326733, bsc1110422 and contains new features and lots of bugfixes: The full changelog can be found on: https://github.com/Lukasa/urllib3/blob/1.22/CHANGES.rst Security issues fixed: -...

3.7CVSS4.6AI score0.00038EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2019/01/03 12:0 a.m.8 views

Fedora 28 : python-urllib3 (2018-b0d6ae1959)

Update to v1.24.1 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...

5.5AI score
Exploits0References1
OpenVAS
OpenVASadded 2018/12/04 12:0 a.m.13 views

Fedora Update for python-urllib3 FEDORA-2018-b0d6ae1959

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
OpenVAS
OpenVASadded 2018/12/04 12:0 a.m.23 views

Fedora Update for python-urllib3 FEDORA-2018-6b10449b15

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2018/11/23 12:0 a.m.17 views

Fedora 27 : python-urllib3 (2018-6b10449b15)

Update to v1.24.1 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...

5.5AI score
Exploits0References1
OSV
OSVadded 2017/01/11 4:59 p.m.26 views

CVE-2016-9015

Versions 1.17 and 1.18 of the Python urllib3 library suffer from a vulnerability that can cause them, in certain configurations, to not correctly validate TLS certificates. This places users of the library with those configurations at risk of man-in-the-middle and information leakage attacks. Thi...

3.7CVSS6.3AI score
Exploits0References2
Debian CVE
Debian CVEadded 2017/01/11 4:0 p.m.24 views

CVE-2016-9015

Versions 1.17 and 1.18 of the Python urllib3 library suffer from a vulnerability that can cause them, in certain configurations, to not correctly validate TLS certificates. This places users of the library with those configurations at risk of man-in-the-middle and information leakage attacks. Thi...

3.7CVSS4.2AI score0.00038EPSS
Exploits0
Rows per page
Query Builder