315 matches found
PT-2024-37666 · Devolutions · Devolutions Remote Desktop Manager
Name of the Vulnerable Software and Affected Versions: Devolutions Remote Desktop Manager versions 2024.2.14.0 and earlier Description: The issue allows an attacker to intercept proxy credentials via a specially crafted website, exploiting the exposure of sensitive information in the edge browser...
SUSE-SU-2024:2080-1 Security update for libzypp, zypper
This update for libzypp, zypper fixes the following issues: - CVE-2017-9271: Fixed proxy credentials written to log files bsc1050625. The following non-security bugs were fixed: - clean: Do not report an error if no repos are defined at all bsc1223971...
AZL-36895 CVE-2024-28849 affecting package reaper for versions less than 3.1.1-9
follow-redirects is an open source, drop-in replacement for Node's http and https modules that automatically follows redirects. In affected versions follow-redirects only clears authorization header during cross-domain redirect, but keep the proxy-authentication header which contains credentials...
python-requests: Unintended leak of Proxy-Authorization header
A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuildproxies is used to recompute and reattach the Proxy-Authorization...
EulerOS 2.0 SP10 : python-pip (EulerOS-SA-2023-2821)
According to the versions of the python-pip packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Requests is a HTTP library. Since Requests 2.3.0, Requests has been leaking Proxy-Authorization headers to destination servers when redirect...
PT-2023-23689 · Micro Focus · Filr
Name of the Vulnerable Software and Affected Versions: Filr affected versions not specified Description: The issue allows an authenticated administrator equivalent Filr user to access the credentials of proxy administrators. Recommendations: At the moment, there is no information about a newer...
python-requests: Unintended leak of Proxy-Authorization header
A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuildproxies is used to recompute and reattach the Proxy-Authorization...
python-requests: Unintended leak of Proxy-Authorization header
A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuildproxies is used to recompute and reattach the Proxy-Authorization...
python-requests: Unintended leak of Proxy-Authorization header
A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuildproxies is used to recompute and reattach the Proxy-Authorization...
python-requests: Unintended leak of Proxy-Authorization header
A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuildproxies is used to recompute and reattach the Proxy-Authorization...
Huawei EulerOS: Security Advisory for python-requests (EulerOS-SA-2023-2927)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for python-requests (EulerOS-SA-2023-2741)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
python-requests: Unintended leak of Proxy-Authorization header
A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuildproxies is used to recompute and reattach the Proxy-Authorization...
python-requests: Unintended leak of Proxy-Authorization header
A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuildproxies is used to recompute and reattach the Proxy-Authorization...
python-requests: Unintended leak of Proxy-Authorization header
A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuildproxies is used to recompute and reattach the Proxy-Authorization...
Amazon Linux 2 : python-requests (ALAS-2023-2110)
The version of python-requests installed on the remote host is prior to 2.6.0-10. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2110 advisory. A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy- Authorization header...
MGASA-2023-0210 Updated python-requests packages fix security vulnerability
Forwarding proxy credentials to the destination server unintentionally CVE-2023-32681...
Requests 信息泄露漏洞
Requests is an elegant and simple HTTP library from the Python Foundation. With Requests, you can send HTTP / 1.1 requests very easily. There is no need to manually add query strings to your URLs or form-encode POST data. A security vulnerability exists in Requests versions prior to 2.31.0 that...
CVE-2023-28086
An HPE OneView appliance dump may expose proxy credential settings...
CVE-2023-28086
An HPE OneView appliance dump may expose proxy credential settings...