Lucene search
Veracode Vulnerability DatabaseVERACODE:46927HistoryMay 15, 2024 - 8:30 a.m.
Information Disclosure
2024-05-1508:30:09
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
information disclosure
scrapy
vulnerability
proxy settings
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
6.7
Confidence
High
EPSS
0
Percentile
9.0%
scrapy is vulnerable to Information Disclosure. The vulnerability is due to redirects ignoring scheme specific proxy settings, which results in http / https schemes using the wrong proxy if the proxy was configured to be scheme specific.
Related
ubuntucve
ubuntucve
CVE-2024-1968
2024-05-20 00:00:00
cvelist
cvelist
osv
osv
CVE-2024-1968
2024-05-20 08:15:08
python-Scrapy-doc-2.11.2-1.1 on GA media
2024-07-12 00:00:00
github
github
vulnrichment
vulnrichment
fedora
fedora
[SECURITY] Fedora 40 Update: python-scrapy-2.11.2-1.fc40
2024-07-27 01:47:08
[SECURITY] Fedora 39 Update: python-scrapy-2.11.2-1.fc39
2024-07-27 13:49:00
nessus
nessus
Fedora 40 : python-scrapy (2024-c27b82d702)
2024-07-27 00:00:00
Fedora 39 : python-scrapy (2024-0bd3b1212e)
2024-07-27 00:00:00
cve
cve
CVE-2024-1968
2024-05-20 08:15:08
debiancve
debiancve
CVE-2024-1968
2024-05-20 08:15:08
openvas
openvas
Fedora: Security Advisory (FEDORA-2024-c27b82d702)
2024-08-06 00:00:00
Fedora: Security Advisory (FEDORA-2024-0bd3b1212e)
2024-08-06 00:00:00
nvd
nvd
CVE-2024-1968
2024-05-20 08:15:08
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
6.7
Confidence
High
EPSS
0
Percentile
9.0%
Related for VERACODE:46927