Lucene search
K

320 matches found

Vulnrichment
Vulnrichment
added 2024/09/12 6:26 p.m.18 views

CVE-2024-4472 Insertion of Sensitive Information into Log File in GitLab

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.5 prior to 17.1.7, starting from 17.2 prior to 17.2.5, and starting from 17.3 prior to 17.3.2, where dependency proxy credentials are retained in graphql Logs...

4CVSS6.6AI score0.00216EPSS
Exploits0References2
OSV
OSV
added 2024/07/16 7:15 p.m.2 views

CVE-2024-6492

Exposure of Sensitive Information in edge browser session proxy feature in Devolutions Remote Desktop Manager 2024.2.14.0 and earlier on Windows allows an attacker to intercept proxy credentials via a specially crafted website...

7.4CVSS5.8AI score0.00599EPSS
Exploits0References1
NVD
NVD
added 2024/07/16 7:15 p.m.26 views

CVE-2024-6492

Exposure of Sensitive Information in edge browser session proxy feature in Devolutions Remote Desktop Manager 2024.2.14.0 and earlier on Windows allows an attacker to intercept proxy credentials via a specially crafted website...

7.4CVSS0.00599EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/16 6:16 p.m.12 views

CVE-2024-6492

Exposure of Sensitive Information in edge browser session proxy feature in Devolutions Remote Desktop Manager 2024.2.14.0 and earlier on Windows allows an attacker to intercept proxy credentials via a specially crafted website...

7.1AI score0.00599EPSS
Exploits0References1
CVE
CVE
added 2024/07/16 6:16 p.m.49 views

CVE-2024-6492

Affected software: Devolutions Remote Desktop Manager (Windows)

7.4CVSS6.9AI score0.00599EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/07/16 12:0 a.m.3 views

PT-2024-37666 · Devolutions · Devolutions Remote Desktop Manager

Name of the Vulnerable Software and Affected Versions: Devolutions Remote Desktop Manager versions 2024.2.14.0 and earlier Description: The issue allows an attacker to intercept proxy credentials via a specially crafted website, exploiting the exposure of sensitive information in the edge browser...

7.4CVSS6.8AI score0.00599EPSS
Exploits0References4
OSV
OSV
added 2024/06/19 5:4 a.m.10 views

SUSE-SU-2024:2080-1 Security update for libzypp, zypper

This update for libzypp, zypper fixes the following issues: - CVE-2017-9271: Fixed proxy credentials written to log files bsc1050625. The following non-security bugs were fixed: - clean: Do not report an error if no repos are defined at all bsc1223971...

4CVSS4.2AI score0.00337EPSS
Exploits0References5
OSV
OSV
added 2024/03/14 5:15 p.m.9 views

AZL-36895 CVE-2024-28849 affecting package reaper for versions less than 3.1.1-9

follow-redirects is an open source, drop-in replacement for Node's http and https modules that automatically follows redirects. In affected versions follow-redirects only clears authorization header during cross-domain redirect, but keep the proxy-authentication header which contains credentials...

6.5CVSS6.6AI score0.01044EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2024/01/18 4:31 p.m.5 views

python-requests: Unintended leak of Proxy-Authorization header

A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuildproxies is used to recompute and reattach the Proxy-Authorization...

6.1CVSS6.6AI score0.02782EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.26 views

EulerOS 2.0 SP10 : python-pip (EulerOS-SA-2023-2821)

According to the versions of the python-pip packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Requests is a HTTP library. Since Requests 2.3.0, Requests has been leaking Proxy-Authorization headers to destination servers when redirect...

6.1CVSS7.1AI score0.02782EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/12/06 12:0 a.m.5 views

PT-2023-23689 · Micro Focus · Filr

Name of the Vulnerable Software and Affected Versions: Filr affected versions not specified Description: The issue allows an authenticated administrator equivalent Filr user to access the credentials of proxy administrators. Recommendations: At the moment, there is no information about a newer...

7.2CVSS6.8AI score0.00676EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/11/14 4:5 p.m.5 views

python-requests: Unintended leak of Proxy-Authorization header

A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuildproxies is used to recompute and reattach the Proxy-Authorization...

6.1CVSS6.6AI score0.02782EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2023/11/14 3:53 p.m.556 views

python-requests: Unintended leak of Proxy-Authorization header

A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuildproxies is used to recompute and reattach the Proxy-Authorization...

6.1CVSS6.6AI score0.02782EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2023/11/14 3:43 p.m.4 views

python-requests: Unintended leak of Proxy-Authorization header

A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuildproxies is used to recompute and reattach the Proxy-Authorization...

6.1CVSS6.6AI score0.02782EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2023/11/08 2:26 p.m.3 views

python-requests: Unintended leak of Proxy-Authorization header

A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuildproxies is used to recompute and reattach the Proxy-Authorization...

6.1CVSS6.6AI score0.02782EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2023/10/10 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for python-requests (EulerOS-SA-2023-2927)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS7AI score0.02782EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/09/11 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for python-requests (EulerOS-SA-2023-2741)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS7AI score0.02782EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2023/08/21 9:53 p.m.3 views

python-requests: Unintended leak of Proxy-Authorization header

A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuildproxies is used to recompute and reattach the Proxy-Authorization...

6.1CVSS6.6AI score0.02782EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2023/08/08 8:26 a.m.4 views

python-requests: Unintended leak of Proxy-Authorization header

A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuildproxies is used to recompute and reattach the Proxy-Authorization...

6.1CVSS6.6AI score0.02782EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2023/08/01 8:55 a.m.4 views

python-requests: Unintended leak of Proxy-Authorization header

A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuildproxies is used to recompute and reattach the Proxy-Authorization...

6.1CVSS6.6AI score0.02782EPSS
Exploits1References5
Rows per page
Query Builder