Lucene search
K

9 matches found

SUSE Linux
SUSE Linux
added 2026/05/29 3:34 p.m.14 views

Security update for python-urllib3

This update for python-urllib3 fixes the following issue CVE-2026-44431: sensitive information disclosure due to sensitive headers being forwarded across origins in proxied low-level redirects bsc1265267. Patch Instructions: To install this SUSE update use the SUSE recommended installation method...

8.2CVSS5.8AI score0.00527EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2026/05/26 7:11 a.m.8 views

Security update for python-urllib3

This update for python-urllib3 fixes the following issue CVE-2026-44431: sensitive information disclosure due to sensitive headers being forwarded across origins in proxied low-level redirects bsc1265267. Patch Instructions: To install this SUSE update use the SUSE recommended installation method...

8.2CVSS5.8AI score0.00527EPSS
Exploits0References4
OSV
OSV
added 2026/05/21 2:36 p.m.12 views

CLSA-2026-1779357790 curl: Fix of 2 CVEs

CVE-2026-5773: wrong reuse of SMB connection; disable connection reuse for SMBS so a subsequent transfer cannot wrongfully reuse a pooled connection to a different share - CVE-2026-6276: clear stale custom-Host cookiehost between requests on the same easy handle cookie leak across origins...

7.5CVSS5.8AI score0.00549EPSS
Exploits2References1
Microsoft CVE
Microsoft CVE
added 2026/05/16 8:5 a.m.32 views

urllib3: Sensitive headers forwarded across origins in proxied low-level redirects

...

8.2CVSS5.8AI score0.00527EPSS
Exploits0
EUVD
EUVD
added 2026/03/25 12:32 a.m.4 views

EUVD-2026-15135

A logic issue was addressed with improved state management. This issue is fixed in Safari 26.4, iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4. A malicious website may be able to access script message handlers intended for other origins...

5.8AI score0.0031EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/03/25 12:32 a.m.2 views

CVE-2026-28861

A logic issue was addressed with improved state management. This issue is fixed in Safari 26.4, iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4. A malicious website may be able to access script message handlers intended for other origins...

4.3CVSS5.2AI score0.0031EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-10463

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Video frames could have been leaked between origins in some situations. This vulnerability affects Firefox 132, Firefox ESR 128.4, Firefox ESR 115.17, Thunderbi...

7.5CVSS7.1AI score0.00701EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/01/25 9:1 a.m.4 views

curl: information disclosure by exploiting a mixed case flaw

A flaw was found in curl that verifies a given cookie domain against the Public Suffix List. This issue could allow a malicious HTTP server to set "super cookies" in curl that are passed back to more origins than what is otherwise allowed or possible...

6.5CVSS6.7AI score0.01685EPSS
Exploits1References5
OSV
OSV
added 2018/06/11 9:29 p.m.5 views

CVE-2018-5136

A shared worker created from a "data:" URL in one tab can be shared by another tab with a different origin, bypassing the same-origin policy. This vulnerability affects Firefox 59...

7.5CVSS7.3AI score0.01644EPSS
Exploits0References5
Rows per page
Query Builder