CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OpenVAS•added 2023/11/03 12:0 a.m.•20 views

Fedora: Security Advisory for python-urllib3 (FEDORA-2023-dede912109)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.2CVSS6.4AI score0.00056EPSS

Tenable Nessus•added 2023/11/03 12:0 a.m.•25 views

Fedora 37 : python-urllib3 (2023-dede912109)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-dede912109 advisory. Update to 1.26.18. Mitigates CVE-2023-45803 / GHSA-g4mx-q9vg-27p4. Ref: https://github.com/advisories/GHSA-g4mx-q9vg-27p4 Tenable has extracted the preceding...

4.2CVSS7AI score0.00056EPSS

OSV•added 2023/11/02 4:53 p.m.•7 views

SUSE-SU-2023:4352-1 Security update for python-urllib3

This update for python-urllib3 fixes the following issues: - CVE-2023-45803: Fix a request body leak that could occur when receiving a 303 HTTP response bsc1216377. - CVE-2018-25091: Fixed a potential leak of the Authorization header during a cross-origin redirect bsc1216275. - CVE-2023-43804:...

8.1CVSS6.3AI score0.0095EPSS

Exploits0References7

RedHat Linux•added 2023/10/30 1:22 a.m.•2 views

python-urllib3: Cookie request header isn't stripped during cross-origin redirects

A flaw was found in urllib3, a user-friendly HTTP client library for Python. urllib3 doesn't treat the Cookie HTTP header special or provide any helpers for managing cookies over HTTP, which is the responsibility of the user. However, it is possible for a user to specify a Cookie header and...

8.1CVSS6.8AI score0.0095EPSS

OSV•added 2023/10/23 7:46 a.m.•5 views

SUSE-SU-2023:4157-1 Security update for python-urllib3

This update for python-urllib3 fixes the following issues: - CVE-2023-43804: Fixed a potential cookie leak via HTTP redirect if the user manually set the corresponding header bsc1215968...

8.1CVSS8.1AI score0.0095EPSS

OpenVAS•added 2023/10/22 12:0 a.m.•19 views

Fedora: Security Advisory for python-urllib3 (FEDORA-2023-932b0c86f4)

4.2CVSS6.4AI score0.00056EPSS

Tenable Nessus•added 2023/10/21 12:0 a.m.•39 views

Fedora 38 : python-urllib3 (2023-932b0c86f4)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-932b0c86f4 advisory. Update to 1.26.18. Mitigates CVE-2023-45803 / GHSA-g4mx-q9vg-27p4. Ref: https://github.com/advisories/GHSA-g4mx-q9vg-27p4 Tenable has extracted the preceding...

4.2CVSS7AI score0.00056EPSS

Tenable Nessus•added 2023/10/19 12:0 a.m.•21 views

SUSE SLED15 / SLES15 Security Update : python-urllib3 (SUSE-SU-2023:4108-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:4108-1 advisory. - urllib3 is a user-friendly HTTP client library for Python. urllib3 doesn't treat the Cookie HTTP header special or...

8.1CVSS7.3AI score0.0095EPSS

OSV•added 2023/10/18 9:52 a.m.•8 views

SUSE-SU-2023:4108-1 Security update for python-urllib3

This update for python-urllib3 fixes the following issues: - CVE-2023-43804: Fixed a potential cookie leak via HTTP redirect if the user manually set the corresponding header bsc1215968...

8.1CVSS8.1AI score0.0095EPSS

OSV•added 2023/10/17 8:15 p.m.•1 views

AZL-31615 CVE-2023-45803 affecting package python-urllib3 for versions less than 1.26.18-1

urllib3 is a user-friendly HTTP client library for Python. urllib3 previously wouldn't remove the HTTP request body when an HTTP redirect response using status 301, 302, or 303 after the request had its method changed from one that could accept a request body like POST to GET as is required by HT...

4.2CVSS6.5AI score0.00056EPSS

Exploits0References1

UbuntuCve•added 2023/10/17 8:15 p.m.•101 views

CVE-2023-45803

4.2CVSS6.6AI score0.00056EPSS

Exploits0References7

OpenVAS•added 2023/10/16 12:0 a.m.•20 views

Fedora: Security Advisory for python-urllib3 (FEDORA-2023-0806784f24)

8.1CVSS8.4AI score0.0095EPSS

OpenVAS•added 2023/10/13 12:0 a.m.•19 views

SUSE: Security Advisory (SUSE-SU-2023:4064-1)

8.1CVSS7.8AI score0.0095EPSS

Tenable Nessus•added 2023/10/13 12:0 a.m.•22 views

SUSE SLED12 / SLES12 Security Update : python-urllib3 (SUSE-SU-2023:4064-1)

The remote SUSE Linux SLED12 / SLEDSAP12 / SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4064-1 advisory. - urllib3 is a user-friendly HTTP client library for Python. urllib3 doesn't treat the Cookie HTTP header special or...

8.1CVSS7.3AI score0.0095EPSS

OSV•added 2023/10/12 10:4 a.m.•9 views

SUSE-SU-2023:4064-1 Security update for python-urllib3

This update for python-urllib3 fixes the following issues: - CVE-2023-43804: Fixed a potential cookie leak via HTTP redirect if the user manually set the corresponding header bsc1215968...

8.1CVSS8.1AI score0.0095EPSS

OpenVAS•added 2023/10/12 12:0 a.m.•16 views

Fedora: Security Advisory for python-urllib3 (FEDORA-2023-8f53bfe088)

8.1CVSS8.4AI score0.0095EPSS

Tenable Nessus•added 2023/10/12 12:0 a.m.•21 views

Fedora 37 : python-urllib3 (2023-0806784f24)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-0806784f24 advisory. Update to 1.26.17: fix CVE-2023-43804 GHSA-v845-jxx5-vc9f Tenable has extracted the preceding description block directly from the Fedora security advisory...

8.1CVSS7.3AI score0.0095EPSS