Количество 25
Количество 25
GHSA-wj55-vqcq-gxcp
There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (such as web browser) connects to, could trigger a Regular Expression Denial of Service (ReDOS) during an authentication request with a specially crafted payload that is sent by the server to the client. The greatest threat that this flaw poses is to application availability.
CVE-2021-3733
There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (such as web browser) connects to, could trigger a Regular Expression Denial of Service (ReDOS) during an authentication request with a specially crafted payload that is sent by the server to the client. The greatest threat that this flaw poses is to application availability.
CVE-2021-3733
There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (such as web browser) connects to, could trigger a Regular Expression Denial of Service (ReDOS) during an authentication request with a specially crafted payload that is sent by the server to the client. The greatest threat that this flaw poses is to application availability.
CVE-2021-3733
There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (such as web browser) connects to, could trigger a Regular Expression Denial of Service (ReDOS) during an authentication request with a specially crafted payload that is sent by the server to the client. The greatest threat that this flaw poses is to application availability.
CVE-2021-3733
There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (such as web browser) connects to could trigger a Regular Expression Denial of Service (ReDOS) during an authentication request with a specially crafted payload that is sent by the server to the client. The greatest threat that this flaw poses is to application availability.
CVE-2021-3733
There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker ...
ELSA-2021-4057
ELSA-2021-4057: python3 security update (MODERATE)
BDU:2022-05838
Уязвимость класса AbstractBasicAuthHandler компонента urllib.request интерпретатора языка программирования Python, позволяющая нарушителю вызвать отказ в обслуживании
openSUSE-SU-2021:3489-1
Security update for python
openSUSE-SU-2021:1418-1
Security update for python
SUSE-SU-2021:3524-1
Security update for python
SUSE-SU-2021:3489-1
Security update for python
SUSE-SU-2021:3477-1
Security update for python3
openSUSE-SU-2021:4104-1
Security update for python3
SUSE-SU-2022:1485-1
Security update for python39
SUSE-SU-2021:4104-1
Security update for python3
SUSE-SU-2021:4015-2
Security update for python3
SUSE-SU-2021:4015-1
Security update for python3
SUSE-SU-2021:3486-1
Security update for python36
RLSA-2022:1764
Moderate: python38:3.8 and python38-devel:3.8 security update
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-wj55-vqcq-gxcp There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (such as web browser) connects to, could trigger a Regular Expression Denial of Service (ReDOS) during an authentication request with a specially crafted payload that is sent by the server to the client. The greatest threat that this flaw poses is to application availability. | CVSS3: 6.5 | 1% Низкий | больше 3 лет назад |
 | CVE-2021-3733 There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (such as web browser) connects to, could trigger a Regular Expression Denial of Service (ReDOS) during an authentication request with a specially crafted payload that is sent by the server to the client. The greatest threat that this flaw poses is to application availability. | CVSS3: 6.5 | 1% Низкий | больше 3 лет назад |
 | CVE-2021-3733 There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (such as web browser) connects to, could trigger a Regular Expression Denial of Service (ReDOS) during an authentication request with a specially crafted payload that is sent by the server to the client. The greatest threat that this flaw poses is to application availability. | CVSS3: 6.5 | 1% Низкий | больше 4 лет назад |
 | CVE-2021-3733 There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (such as web browser) connects to, could trigger a Regular Expression Denial of Service (ReDOS) during an authentication request with a specially crafted payload that is sent by the server to the client. The greatest threat that this flaw poses is to application availability. | CVSS3: 6.5 | 1% Низкий | больше 3 лет назад |
 | CVE-2021-3733 There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (such as web browser) connects to could trigger a Regular Expression Denial of Service (ReDOS) during an authentication request with a specially crafted payload that is sent by the server to the client. The greatest threat that this flaw poses is to application availability. | CVSS3: 6.5 | 1% Низкий | больше 3 лет назад |
| CVE-2021-3733 There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker ... | CVSS3: 6.5 | 1% Низкий | больше 3 лет назад |
| ELSA-2021-4057 ELSA-2021-4057: python3 security update (MODERATE) | около 4 лет назад | ||
 | BDU:2022-05838 Уязвимость класса AbstractBasicAuthHandler компонента urllib.request интерпретатора языка программирования Python, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 6.5 | 1% Низкий | почти 5 лет назад |
 | openSUSE-SU-2021:3489-1 Security update for python | около 4 лет назад | ||
| openSUSE-SU-2021:1418-1 Security update for python | около 4 лет назад | ||
| SUSE-SU-2021:3524-1 Security update for python | около 4 лет назад | ||
| SUSE-SU-2021:3489-1 Security update for python | около 4 лет назад | ||
| SUSE-SU-2021:3477-1 Security update for python3 | около 4 лет назад | ||
| openSUSE-SU-2021:4104-1 Security update for python3 | почти 4 года назад | ||
| SUSE-SU-2022:1485-1 Security update for python39 | больше 3 лет назад | ||
| SUSE-SU-2021:4104-1 Security update for python3 | почти 4 года назад | ||
| SUSE-SU-2021:4015-2 Security update for python3 | почти 4 года назад | ||
| SUSE-SU-2021:4015-1 Security update for python3 | почти 4 года назад | ||
| SUSE-SU-2021:3486-1 Security update for python36 | около 4 лет назад | ||
 | RLSA-2022:1764 Moderate: python38:3.8 and python38-devel:3.8 security update | больше 3 лет назад |
Уязвимостей на страницу