CVE-2014-1829

Опубликовано: 15 окт. 2014

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 5

Описание

Requests (aka python-requests) before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request.

Релиз	Статус	Примечание
devel	not-affected	2.3.0-1
esm-infra-legacy/trusty	released	2.2.1-1ubuntu0.1
esm-infra/xenial	not-affected	2.3.0-1
lucid	DNE
precise	ignored	end of life
precise/esm	DNE	precise was needed
trusty	released	2.2.1-1ubuntu0.1
trusty/esm	released	2.2.1-1ubuntu0.1
upstream	released	2.3.0-1
utopic	not-affected	2.3.0-1

Показывать по

Ссылки на источники

EPSS

Процентиль: 65%

0.00495

Низкий

5 Medium

CVSS2

Связанные уязвимости

CVE-2014-1829

redhat

около 12 лет назад

Requests (aka python-requests) before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request.

CVE-2014-1829

nvd

больше 11 лет назад

Requests (aka python-requests) before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request.

CVE-2014-1829

debian

больше 11 лет назад

Requests (aka python-requests) before 2.3.0 allows remote servers to o ...

GHSA-cfj3-7x9c-4p3h

CVSS3: 5.3

github

больше 3 лет назад

Exposure of Sensitive Information to an Unauthorized Actor in Requests

EPSS

Процентиль: 65%

0.00495

Низкий

5 Medium

CVSS2

CVE-2014-1829

Описание

Пакет requests

Ссылки на источники

Связанные уязвимости