Lucene search
K

14 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.25 views

Mageia: Security Advisory (MGASA-2014-0409)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.6AI score0.022EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2016/01/27 12:0 a.m.17 views

openSUSE Security Update : python-requests (openSUSE-2016-98)

This update for python-requests fixes the following issue : - CVE-2014-1830: Proxy-Authorization header leak bnc897658 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2016-98. The tex...

5CVSS8.2AI score0.02036EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/03/30 12:0 a.m.41 views

Mandriva Linux Security Advisory : python-requests (MDVSA-2015:133)

Updated python-requests packages fix security vulnerabilities : Python-requests was found to have a vulnerability, where the attacker can retrieve the passwords from /.netrc file through redirect requests, if the user has their passwords stored in the /.netrc file CVE-2014-1829. It was discovered...

6.8CVSS7.2AI score0.03408EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2015/02/02 12:0 a.m.32 views

Debian DSA-3146-1 : requests - security update

Jakub Wilk discovered that in requests, an HTTP library for the Python language, authentication information was improperly handled when a redirect occured. This would allow remote servers to obtain two different types of sensitive information: proxy passwords from the Proxy-Authorization header...

5CVSS8.2AI score0.022EPSS
Exploits0References7
Debian
Debian
added 2015/01/30 3:54 p.m.24 views

[SECURITY] [DSA 3146-1] requests security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3146-1 [email protected] http://www.debian.org/security/ Sebastien Delafond January 30, 2015 http://www.debian.org/security/faq -...

5CVSS1.7AI score0.022EPSS
Exploits0
Debian
Debian
added 2015/01/30 3:54 p.m.23 views

[SECURITY] [DSA 3146-1] requests security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3146-1 [email protected] http://www.debian.org/security/ Sebastien Delafond January 30, 2015 http://www.debian.org/security/faq -...

5CVSS6AI score0.022EPSS
Exploits0
OSV
OSV
added 2015/01/30 12:0 a.m.32 views

DSA-3146-1 requests - security update

Bulletin has no description...

5CVSS9.3AI score0.022EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/01/29 12:0 a.m.31 views

Debian: Security Advisory (DSA-3146-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.5AI score0.022EPSS
Exploits0References3
OSV
OSV
added 2014/10/15 2:55 p.m.10 views

CVE-2014-1830

Requests aka python-requests before 2.3.0 allows remote servers to obtain sensitive information by reading the Proxy-Authorization header in a redirected request...

9.1AI score
Exploits0References6
CVE
CVE
added 2014/10/15 2:0 p.m.120 views

CVE-2014-1830

CVE-2014-1830 affects python-requests (Requests). The issue arises when a redirect occurs: the Proxy-Authorization header is not re-evaluated for the new request, allowing a remote server to leak sensitive information. Public advisories (e.g., openSUSE-2016-98) note this CVE and indicate a securi...

5CVSS5.8AI score0.02036EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/10/15 12:0 a.m.24 views

Ubuntu 14.04 LTS : Requests vulnerabilities (USN-2382-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2382-1 advisory. Jakub Wilk discovered that Requests incorrectly reused authentication credentials after being redirected. An attacker could possibly use this issue to...

5CVSS8.4AI score0.022EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2014/10/15 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-2382-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.5AI score0.022EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2014/10/14 2:23 p.m.49 views

USN-2382-1: Requests vulnerabilities

Jakub Wilk discovered that Requests incorrectly reused authentication credentials after being redirected. An attacker could possibly use this issue to obtain authentication credentials intended for another site. CVE-2014-1829, CVE-2014-1830...

5CVSS8.3AI score0.022EPSS
Exploits0
Mageia
Mageia
added 2014/10/09 2:39 p.m.47 views

Updated python-requests packages fix security vulnerabilities

Updated python-requests packages fix security vulnerability: Python-requests was found to have a vulnerability, where the attacker can retrieve the passwords from /.netrc file through redirect requests, if the user has their passwords stored in the /.netrc file CVE-2014-1829. It was discovered th...

5CVSS6.2AI score0.022EPSS
Exploits0References3
Rows per page
Query Builder