Lucene search
K

14 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.25 views

Mageia: Security Advisory (MGASA-2014-0409)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.6AI score0.022EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2015/03/30 12:0 a.m.41 views

Mandriva Linux Security Advisory : python-requests (MDVSA-2015:133)

Updated python-requests packages fix security vulnerabilities : Python-requests was found to have a vulnerability, where the attacker can retrieve the passwords from /.netrc file through redirect requests, if the user has their passwords stored in the /.netrc file CVE-2014-1829. It was discovered...

6.8CVSS7.2AI score0.03408EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2015/02/02 12:0 a.m.32 views

Debian DSA-3146-1 : requests - security update

Jakub Wilk discovered that in requests, an HTTP library for the Python language, authentication information was improperly handled when a redirect occured. This would allow remote servers to obtain two different types of sensitive information: proxy passwords from the Proxy-Authorization header...

5CVSS8.2AI score0.022EPSS
Exploits0References7
Debian
Debian
added 2015/01/30 3:54 p.m.25 views

[SECURITY] [DSA 3146-1] requests security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3146-1 [email protected] http://www.debian.org/security/ Sebastien Delafond January 30, 2015 http://www.debian.org/security/faq -...

5CVSS1.7AI score0.022EPSS
Exploits0
Debian
Debian
added 2015/01/30 3:54 p.m.23 views

[SECURITY] [DSA 3146-1] requests security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3146-1 [email protected] http://www.debian.org/security/ Sebastien Delafond January 30, 2015 http://www.debian.org/security/faq -...

5CVSS6AI score0.022EPSS
Exploits0
OSV
OSV
added 2015/01/30 12:0 a.m.32 views

DSA-3146-1 requests - security update

Bulletin has no description...

5CVSS9.3AI score0.022EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/01/29 12:0 a.m.31 views

Debian: Security Advisory (DSA-3146-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.5AI score0.022EPSS
Exploits0References3
OSV
OSV
added 2014/10/15 2:55 p.m.7 views

CVE-2014-1829

Requests aka python-requests before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request...

9.3AI score
Exploits0References7
CVE
CVE
added 2014/10/15 2:0 p.m.91 views

CVE-2014-1829

The CVE-2014-1829 entry describes a vulnerability in Requests (python-requests) prior to version 2.3.0, where a redirected request could reveal a netrc password by reading the Authorization header. The core issue is exposure of credentials through netrc data via headers during redirects. Affected...

5CVSS6.4AI score0.022EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/10/15 12:0 a.m.24 views

Ubuntu 14.04 LTS : Requests vulnerabilities (USN-2382-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2382-1 advisory. Jakub Wilk discovered that Requests incorrectly reused authentication credentials after being redirected. An attacker could possibly use this issue to...

5CVSS8.4AI score0.022EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2014/10/15 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-2382-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.5AI score0.022EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2014/10/14 2:23 p.m.50 views

USN-2382-1: Requests vulnerabilities

Jakub Wilk discovered that Requests incorrectly reused authentication credentials after being redirected. An attacker could possibly use this issue to obtain authentication credentials intended for another site. CVE-2014-1829, CVE-2014-1830...

5CVSS8.3AI score0.022EPSS
Exploits0
Mageia
Mageia
added 2014/10/09 2:39 p.m.47 views

Updated python-requests packages fix security vulnerabilities

Updated python-requests packages fix security vulnerability: Python-requests was found to have a vulnerability, where the attacker can retrieve the passwords from /.netrc file through redirect requests, if the user has their passwords stored in the /.netrc file CVE-2014-1829. It was discovered th...

5CVSS6.2AI score0.022EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2014/09/19 12:0 a.m.32 views

CVE-2014-1829

Requests aka python-requests before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request...

5CVSS7.2AI score0.022EPSS
Exploits0References4
Rows per page
Query Builder