Уязвимость CVE-2020-26116

CVE-2020-26116

CVSS3: 7.2

ubuntu

больше 4 лет назад

http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request.

CVE-2020-26116

CVSS3: 6.5

redhat

больше 5 лет назад

http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request.

CVE-2020-26116

CVSS3: 7.2

nvd

больше 4 лет назад

http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request.

CVE-2020-26116

CVSS3: 7.2

debian

больше 4 лет назад

http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x be ...

openSUSE-SU-2020:1988-1

suse-cvrf

больше 4 лет назад

Security update for python

exploitDog

CVE-2020-26116

Описание

Возможность эксплуатации

Связанные уязвимости