Lucene search
K

14 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.25 views

Mageia: Security Advisory (MGASA-2014-0409)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.6AI score0.022EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2015/03/30 12:0 a.m.41 views

Mandriva Linux Security Advisory : python-requests (MDVSA-2015:133)

Updated python-requests packages fix security vulnerabilities : Python-requests was found to have a vulnerability, where the attacker can retrieve the passwords from /.netrc file through redirect requests, if the user has their passwords stored in the /.netrc file CVE-2014-1829. It was discovered...

6.8CVSS7.2AI score0.03408EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2015/02/02 12:0 a.m.32 views

Debian DSA-3146-1 : requests - security update

Jakub Wilk discovered that in requests, an HTTP library for the Python language, authentication information was improperly handled when a redirect occured. This would allow remote servers to obtain two different types of sensitive information: proxy passwords from the Proxy-Authorization header...

5CVSS8.2AI score0.022EPSS
Exploits0References7
Debian
Debian
added 2015/01/30 3:54 p.m.24 views

[SECURITY] [DSA 3146-1] requests security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3146-1 [email protected] http://www.debian.org/security/ Sebastien Delafond January 30, 2015 http://www.debian.org/security/faq -...

5CVSS1.7AI score0.022EPSS
Exploits0
Debian
Debian
added 2015/01/30 3:54 p.m.23 views

[SECURITY] [DSA 3146-1] requests security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3146-1 [email protected] http://www.debian.org/security/ Sebastien Delafond January 30, 2015 http://www.debian.org/security/faq -...

5CVSS6AI score0.022EPSS
Exploits0
OSV
OSV
added 2015/01/30 12:0 a.m.31 views

DSA-3146-1 requests - security update

Bulletin has no description...

5CVSS9.3AI score0.022EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/01/29 12:0 a.m.31 views

Debian: Security Advisory (DSA-3146-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.5AI score0.022EPSS
Exploits0References3
OSV
OSV
added 2014/10/15 2:55 p.m.7 views

CVE-2014-1829

Requests aka python-requests before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request...

9.3AI score
Exploits0References7
CVE
CVE
added 2014/10/15 2:0 p.m.91 views

CVE-2014-1829

The CVE-2014-1829 entry describes a vulnerability in Requests (python-requests) prior to version 2.3.0, where a redirected request could reveal a netrc password by reading the Authorization header. The core issue is exposure of credentials through netrc data via headers during redirects. Affected...

5CVSS6.4AI score0.022EPSS
Exploits0References6Affected Software1
OpenVAS
OpenVAS
added 2014/10/15 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-2382-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.5AI score0.022EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/10/15 12:0 a.m.24 views

Ubuntu 14.04 LTS : Requests vulnerabilities (USN-2382-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2382-1 advisory. Jakub Wilk discovered that Requests incorrectly reused authentication credentials after being redirected. An attacker could possibly use this issue to...

5CVSS8.4AI score0.022EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2014/10/14 2:23 p.m.48 views

USN-2382-1: Requests vulnerabilities

Jakub Wilk discovered that Requests incorrectly reused authentication credentials after being redirected. An attacker could possibly use this issue to obtain authentication credentials intended for another site. CVE-2014-1829, CVE-2014-1830...

5CVSS8.3AI score0.022EPSS
Exploits0
Mageia
Mageia
added 2014/10/09 2:39 p.m.47 views

Updated python-requests packages fix security vulnerabilities

Updated python-requests packages fix security vulnerability: Python-requests was found to have a vulnerability, where the attacker can retrieve the passwords from /.netrc file through redirect requests, if the user has their passwords stored in the /.netrc file CVE-2014-1829. It was discovered th...

5CVSS6.2AI score0.022EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2014/09/19 12:0 a.m.31 views

CVE-2014-1829

Requests aka python-requests before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request...

5CVSS7.2AI score0.022EPSS
Exploits0References4
Rows per page
Query Builder