115 matches found
CVE-2023-48052 vulnerabilities
Vulnerabilities for packages: httpie...
DEBIAN-CVE-2023-48052
Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack...
CVE-2023-48052
Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack...
CVE-2023-48052
Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack...
encapsia-cli (>=0.1.8 <=0.2.1), httpie-credential-store (=1.0.0) +1 more potentially affected by CVE-2023-48052 via httpie (=1.0.3)
httpie PYPI version =1.0.3 is affected by a known vulnerability. The following packages have a transitive dependency on httpie and may be impacted: - encapsia-cli =0.1.8, =0.2.1 - httpie-credential-store =1.0.0 - veracode-api-signing =21.3.0 Source cves: CVE-2023-48052 Source advisory:...
dalineunit (>=0.0.31 <=0.0.69), encapsia-cli (>=0.2.2 <=0.5.1) +4 more potentially affected by CVE-2023-48052 via httpie (>=2.0.0 <=2.6.0)
httpie PYPI version =2.0.0, =0.0.31, =0.2.2, =0.0.14, =1.3.21, =1.9.24 Source cves: CVE-2023-48052 Source advisory: OSV:PYSEC-2023-242...
avaintegration-metapackage (>=6.0.4.3 <=6.0.5.32), dnastack-client-library (>=3.0.324 <=3.1.232) +66 more potentially affected by CVE-2023-48052 via httpie (>=3.2.1 <=3.2.4)
httpie PYPI version =3.2.1, =6.0.4.3, =3.0.324, =0.5.2, =1.0.0, =1.1.2, =0.1.1, =0.1.1, =0.0.1, =0.0.1, =0.1.0, =1.0.0 - httpie-consul =1.0.2 and more Source cves: CVE-2023-48052 Source advisory: OSV:PYSEC-2023-242...
UBUNTU-CVE-2023-48052
Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack...
Design/Logic Flaw
Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack...
CVE-2023-48052
Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack...
PYSEC-2023-242
Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack...
PYSEC-2023-242
Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack...
PT-2023-30682 · Httpie +1 · Httpie +1
Name of the Vulnerable Software and Affected Versions: HTTPie version 3.2.2 Description: The issue allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack due to missing SSL certificate validation. Recommendations: For HTTPie version 3.2.2,...
HTTPie Security Vulnerability
HTTPie is a command line HTTP client. A security vulnerability exists in the HTTPie CLI version v3.2.2, which stems from a lack of SSL certificate validation, and allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack...
CVE-2023-48052
Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack...
CVE-2023-48052
Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack...
CVE-2023-48052
CVE-2023-48052 affects HTTPie v3.2.2, where missing SSL certificate validation enables a network-based MITM, allowing eavesdropping and compromising confidentiality and integrity. CVSS v3.1 vectors reflect network access, high impact on confidentiality and integrity, and no user interaction requi...
CVE-2023-48052
Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack...
CVE-2023-48052
Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack...
FreeBSD : py-httpie -- exposure of sensitive information vulnerabilities (1e37fa3e-5988-4991-808f-eae98047e2af)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 1e37fa3e-5988-4991-808f-eae98047e2af advisory. - Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository httpie/httpi...