Lucene search
K

19 matches found

OSV
OSV
added 2026/06/03 7:8 p.m.12 views

ROOT-APP-PYPI-CVE-2025-66418 CVE-2025-66418 in rootio-urllib3 - Patched by Root

Root has patched CVE-2025-66418 in the rootio-urllib3 package for Root:PyPI. Multiple fixed versions available...

7.5CVSS7.5AI score0.00633EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.3 views

EulerOS Virtualization 2.12.1 : python-urllib3 (EulerOS-SA-2026-1459)

According to the versions of the python-urllib3 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links ...

8.9CVSS6.7AI score0.02667EPSS
Exploits1References5
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/03 6:49 a.m.7 views

Security Bulletin: IBM Maximo Application Suite uses pyasn1-0.6.1, protobuf-6.33.4-cp39-abi3-manylinux2014_x86_64, urllib3-2.5.0-py3-none-any, database/sql 1.24.4 and weasyprint-67.0-py3-none-any.

Summary Security Bulletin: IBM Maximo Application Suite uses pyasn1-0.6.1, protobuf-6.33.4-cp39-abi3-manylinux2014x8664, urllib3-2.5.0-py3-none-any, database/sql 1.24.4 and weasyprint-67.0-py3-none-any which is vulnerable to CVE-2026-23490, CVE-2026-0994, CVE-2025-66418, CVE-2025-66471,...

8.9CVSS6AI score0.00679EPSS
Exploits2Affected Software1
RedHat Linux
RedHat Linux
added 2026/02/09 9:1 a.m.11 views

Important: Red Hat Security Advisory: fence-agents security update

An update for fence-agents is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Important. A Common...

8.9CVSS6.6AI score0.00633EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/02/04 12:0 a.m.7 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : python-urllib3 (SUSE-SU-2026:0367-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0367-1 advisory. - CVE-2025-66471: excessive resource consumption via decompression of highly compressed data in...

8.9CVSS5.5AI score0.00633EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/02/02 12:0 a.m.8 views

RHEL 8 : fence-agents (RHSA-2026:1702)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:1702 advisory. The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable...

8.9CVSS5.5AI score0.00633EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2026/02/02 12:0 a.m.1 views

Fedora: Security Advisory (FEDORA-2026-8b7270b473)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.9CVSS7.4AI score0.02667EPSS
Exploits0References8
OSV
OSV
added 2026/01/30 12:28 p.m.22 views

OESA-2026-1253 python-pip security update

pip is the package installer for Python. You can use pip to install packages from the Python Package Index and other indexes. %global bashcompdir %b=$pkg-config --variable=completionsdir bash-completion 2/dev/null; echo $b:-/bashcompletion.d Name: python-pip Version: 23.3.1 Release: 6 Summary: A...

8.9CVSS5.9AI score0.00633EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2026/01/29 2:37 p.m.10 views

Security Bulletin: Location Service for ESRI Component uses urllib3-2.5.0 and werkzeug-3.1.3 library which were vulnerable to CVE-2025-66418, CVE-2025-66471 and CVE-2025-66221 respectively

Summary Location Service for ESRI Component uses urllib3-2.5.0 and werkzeug-3.1.3 library which were vulnerable to CVE-2025-66418, CVE-2025-66471 and CVE-2025-66221 respectively. Vulnerability Details CVEID:CVE-2025-66418 DESCRIPTION: urllib3 is a user-friendly HTTP client library for Python...

8.9CVSS6AI score0.00633EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2026/01/27 9:32 a.m.5 views

Important: Red Hat Security Advisory: python-s3transfer security update

An update for python-s3transfer is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.9CVSS6.6AI score0.00633EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.7 views

RHEL 9 : fence-agents (RHSA-2026:1332)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:1332 advisory. The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable...

8.9CVSS5.9AI score0.00633EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/26 12:0 a.m.7 views

Oracle Linux 9 : python3.11-urllib3 (ELSA-2026-1089)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-1089 advisory. - Security fix for CVE-2025-66471 - Security fix for CVE-2025-66418 Tenable has extracted the preceding description block directly from the Oracle Linu...

8.9CVSS7.2AI score0.02667EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2026/01/26 12:0 a.m.6 views

python3.12-urllib3 security update

1.26.19-1.1 - Security fix for CVE-2025-66471 - Security fix for CVE-2025-66418 - Security fix for CVE-2026-21441 Resolves: RHEL-139403...

8.9CVSS5.9AI score0.02667EPSS
Exploits0
Oracle linux
Oracle linux
added 2026/01/26 12:0 a.m.9 views

python-urllib3 security update

1.26.5-6.1 - Security fix for CVE-2025-66471 - Security fix for CVE-2025-66418 - Security fix for CVE-2026-21441 Resolves: RHEL-139401...

8.9CVSS7.2AI score0.02667EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/01/21 4:2 p.m.4 views

CVE-2025-66418 affecting package python-urllib3 for versions less than 1.26.19-3

CVE-2025-66418 affecting package python-urllib3 for versions less than 1.26.19-3. A patched version of the package is available...

8.9CVSS5.5AI score0.00633EPSS
Exploits0
Amazon
Amazon
added 2026/01/21 12:0 a.m.7 views

Medium: python-pip

Issue Overview: urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links in the decompression chain was unbounded allowing a malicious server to insert a virtually unlimited number of compression steps leading to high CPU usage an...

8.9CVSS7.5AI score0.00633EPSS
Exploits0
OSV
OSV
added 2025/12/10 6:8 a.m.4 views

BELL-CVE-2025-66418

Bulletin has no description...

7.5CVSS7.7AI score0.00633EPSS
Exploits0References1
Wolfi
Wolfi
added 2025/12/08 7:48 p.m.12 views

CVE-2025-66418 vulnerabilities

Vulnerabilities for packages: airflow, py3-urllib3, kubeflow-jupyter-web-app, az, pypy-3.10, kubeflow-pipelines, datadog-agent, ggshield, jwt-tool, tensorflow-cpu-jupyter, dask-kubernetes, jupyter-base-notebook, kubeflow-pipelines-visualization-server, dask-gateway, kubeflow-katib, open-webui,...

8.9CVSS6.7AI score0.00633EPSS
Exploits0
Circl
Circl
added 2025/12/05 5:51 p.m.8 views

CVE-2025-66418

creationtimestamp| type| source ---|---|--- 2025-12-05 17:51:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m7b2g26hzo2s 2025-12-05 17:54:47+00:00| seen| https://seclists.org/oss-sec/2025/q4/250 2025-12-05 19:12:43+00:00| seen|...

8.9CVSS6.5AI score0.00633EPSS
Exploits0References12
Rows per page
Query Builder