CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedHat Linux•added 2024/12/17 7:1 p.m.•19 views

Moderate: Red Hat Security Advisory: python3.11-urllib3 security update

An update for python3.11-urllib3 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

4.2CVSS6.8AI score0.00056EPSS

Exploits0References2

SUSE Linux•added 2024/12/17 1:17 p.m.•0 views

Security update for python-urllib3_1

This update for python-urllib31 fixes the following issues: CVE-2024-37891: Fixed proxy-authorization request header not stripped during cross-origin redirects bsc1226469 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zyppe...

4.4CVSS7.8AI score0.00222EPSS

OSV•added 2024/12/17 1:17 p.m.•3 views

SUSE-SU-2024:4358-1 Security update for python-urllib3_1

This update for python-urllib31 fixes the following issues: - CVE-2024-37891: Fixed proxy-authorization request header not stripped during cross-origin redirects bsc1226469...

6.5CVSS5.8AI score0.00222EPSS

Exploits1References3

OSV•added 2024/12/17 12:0 a.m.•24 views

ALSA-2024:11238 Moderate: python3.11-urllib3 security update

The python-urllib3 package provides the Python HTTP module with connection pooling and file POST abilities. Security Fixes: urllib3: Request body not stripped after redirect from 303 status changes request method to GET CVE-2023-45803 For more details about the security issues, including the...

4.2CVSS6.8AI score0.00056EPSS

Exploits0References4

AlmaLinux•added 2024/12/17 12:0 a.m.•12 views

Moderate: python3.11-urllib3 security update

4.2CVSS7.1AI score0.00056EPSS

Exploits0References4

OSV•added 2024/12/17 12:0 a.m.•9 views

ALSA-2024:11189 Moderate: python3.11-urllib3 security update

4.2CVSS6.8AI score0.00056EPSS

Exploits0References4

Redos•added 2024/12/11 12:0 a.m.•8 views

ROS-20241211-11

A vulnerability in the HTTP client library for Python urllib3 is related to the fact that the Prox-Authorization header is not removed during source-to-source redirection when using proxy server support urllib3 with ProxyManager . Exploitation of the vulnerability could allow an attacker acting...

6.5CVSS7.2AI score0.00222EPSS

Exploits1

OSV•added 2024/11/25 9:53 a.m.•8 views

RHSA-2024:9985 Red Hat Security Advisory: RHOSP 17.1.4 (python-urllib3) security update

Bulletin has no description...

4.4CVSS5.8AI score0.00222EPSS

Exploits1References7

Tenable Nessus•added 2024/11/25 12:0 a.m.•9 views

RHEL 8 : RHOSP 17.1.4 (python-urllib3) (RHSA-2024:9985)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:9985 advisory. Python HTTP module with connection pooling and file POST abilities. Security Fixes: proxy-authorization request header is not stripped during...

RedHat Linux•added 2024/11/21 9:30 a.m.•20 views

Exploits1References5

Moderate: Red Hat Security Advisory: RHOSP 17.1.4 (python-urllib3) security update

An update for python-urllib3 is now available for Red Hat OpenStack Platform RHOSP 17.1 Wallaby. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

RedHat Linux•added 2024/11/19 1:27 a.m.•17 views

Moderate: Red Hat Security Advisory: python3.11-urllib3 security update

An update for python3.11-urllib3 is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Tenable Nessus•added 2024/11/14 12:0 a.m.•5 views

Fedora 41 : python-urllib3 (2024-9283a3b879)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-9283a3b879 advisory. Automatic update for python-urllib3-1.26.19-1.fc41. Changelog Wed Jun 26 2024 Lumir Balhar - 1.26.19-1 - Update to 1.26.19 to fix CVE-2024-37891 rhbz2292790...

6.5CVSS6.6AI score0.00222EPSS

RedHat Linux•added 2024/11/12 10:24 a.m.•22 views

Moderate: Red Hat Security Advisory: python3.11-urllib3 security update

An update for python3.11-urllib3 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

RedHat Linux•added 2024/11/12 10:24 a.m.•1 views

urllib3: proxy-authorization request header is not stripped during cross-origin redirects

A flaw was found in urllib3, an HTTP client library for Python. In certain configurations, urllib3 does not treat the Proxy-Authorization HTTP header as one carrying authentication material. This issue results in not stripping the header on cross-origin redirects...

6.5CVSS6.7AI score0.00222EPSS

AlmaLinux•added 2024/11/12 12:0 a.m.•17 views

Moderate: python3.11-urllib3 security update

The python-urllib3 package provides the Python HTTP module with connection pooling and file POST abilities. Security Fixes: urllib3: proxy-authorization request header is not stripped during cross-origin redirects CVE-2024-37891 For more details about the security issues, including the impact, a...

6.5CVSS5.2AI score0.00222EPSS