Количество 20
Количество 20
CVE-2023-43804
urllib3 is a user-friendly HTTP client library for Python. urllib3 doesn't treat the `Cookie` HTTP header special or provide any helpers for managing cookies over HTTP, that is the responsibility of the user. However, it is possible for a user to specify a `Cookie` header and unknowingly leak information via HTTP redirects to a different origin if that user doesn't disable redirects explicitly. This issue has been patched in urllib3 version 1.26.17 or 2.0.5.
CVE-2023-43804
urllib3 is a user-friendly HTTP client library for Python. urllib3 doesn't treat the `Cookie` HTTP header special or provide any helpers for managing cookies over HTTP, that is the responsibility of the user. However, it is possible for a user to specify a `Cookie` header and unknowingly leak information via HTTP redirects to a different origin if that user doesn't disable redirects explicitly. This issue has been patched in urllib3 version 1.26.17 or 2.0.5.
CVE-2023-43804
urllib3 is a user-friendly HTTP client library for Python. urllib3 doesn't treat the `Cookie` HTTP header special or provide any helpers for managing cookies over HTTP, that is the responsibility of the user. However, it is possible for a user to specify a `Cookie` header and unknowingly leak information via HTTP redirects to a different origin if that user doesn't disable redirects explicitly. This issue has been patched in urllib3 version 1.26.17 or 2.0.5.
CVE-2023-43804
CVE-2023-43804
urllib3 is a user-friendly HTTP client library for Python. urllib3 doe ...
SUSE-SU-2023:4108-1
Security update for python-urllib3
SUSE-SU-2023:4064-1
Security update for python-urllib3
RLSA-2024:2986
Moderate: python3.11-urllib3 security update
GHSA-v845-jxx5-vc9f
`Cookie` HTTP header isn't stripped on cross-origin redirects
ELSA-2024-2986
ELSA-2024-2986: python3.11-urllib3 security update (MODERATE)
ELSA-2024-2159
ELSA-2024-2159: python3.11-urllib3 security update (MODERATE)
BDU:2023-08730
Уязвимость модуля urllib3 интерпретатора языка программирования Python, связанная с отсутствием защиты служебных данных, позволяющая нарушителю раскрыть защищаемую информацию
ROS-20240405-02
Уязвимость python3-urllib3
ELSA-2024-0464
ELSA-2024-0464: python-urllib3 security update (MODERATE)
ELSA-2024-0133
ELSA-2024-0133: fence-agents security update (MODERATE)
ELSA-2024-0116
ELSA-2024-0116: python-urllib3 security update (MODERATE)
ELSA-2023-7753
ELSA-2023-7753: fence-agents security update (MODERATE)
ELSA-2024-2985
ELSA-2024-2985: python39:3.9 and python39-devel:3.9 security update (MODERATE)
ROS-20240412-04
Множественные уязвимости salt
ELSA-2024-2987
ELSA-2024-2987: python27:2.7 security update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-43804 urllib3 is a user-friendly HTTP client library for Python. urllib3 doesn't treat the `Cookie` HTTP header special or provide any helpers for managing cookies over HTTP, that is the responsibility of the user. However, it is possible for a user to specify a `Cookie` header and unknowingly leak information via HTTP redirects to a different origin if that user doesn't disable redirects explicitly. This issue has been patched in urllib3 version 1.26.17 or 2.0.5. | CVSS3: 5.9 | 1% Низкий | больше 1 года назад |
 | CVE-2023-43804 urllib3 is a user-friendly HTTP client library for Python. urllib3 doesn't treat the `Cookie` HTTP header special or provide any helpers for managing cookies over HTTP, that is the responsibility of the user. However, it is possible for a user to specify a `Cookie` header and unknowingly leak information via HTTP redirects to a different origin if that user doesn't disable redirects explicitly. This issue has been patched in urllib3 version 1.26.17 or 2.0.5. | CVSS3: 5.9 | 1% Низкий | больше 1 года назад |
 | CVE-2023-43804 urllib3 is a user-friendly HTTP client library for Python. urllib3 doesn't treat the `Cookie` HTTP header special or provide any helpers for managing cookies over HTTP, that is the responsibility of the user. However, it is possible for a user to specify a `Cookie` header and unknowingly leak information via HTTP redirects to a different origin if that user doesn't disable redirects explicitly. This issue has been patched in urllib3 version 1.26.17 or 2.0.5. | CVSS3: 5.9 | 1% Низкий | больше 1 года назад |
 | CVSS3: 8.1 | 1% Низкий | 2 месяца назад | |
| CVE-2023-43804 urllib3 is a user-friendly HTTP client library for Python. urllib3 doe ... | CVSS3: 5.9 | 1% Низкий | больше 1 года назад |
 | SUSE-SU-2023:4108-1 Security update for python-urllib3 | 1% Низкий | больше 1 года назад | |
| SUSE-SU-2023:4064-1 Security update for python-urllib3 | 1% Низкий | больше 1 года назад | |
 | RLSA-2024:2986 Moderate: python3.11-urllib3 security update | 1% Низкий | около 1 года назад | |
| GHSA-v845-jxx5-vc9f `Cookie` HTTP header isn't stripped on cross-origin redirects | CVSS3: 5.9 | 1% Низкий | больше 1 года назад |
| ELSA-2024-2986 ELSA-2024-2986: python3.11-urllib3 security update (MODERATE) | около 1 года назад | ||
| ELSA-2024-2159 ELSA-2024-2159: python3.11-urllib3 security update (MODERATE) | около 1 года назад | ||
 | BDU:2023-08730 Уязвимость модуля urllib3 интерпретатора языка программирования Python, связанная с отсутствием защиты служебных данных, позволяющая нарушителю раскрыть защищаемую информацию | CVSS3: 8.1 | 1% Низкий | больше 1 года назад |
 | ROS-20240405-02 Уязвимость python3-urllib3 | CVSS3: 8.1 | 1% Низкий | около 1 года назад |
| ELSA-2024-0464 ELSA-2024-0464: python-urllib3 security update (MODERATE) | больше 1 года назад | ||
| ELSA-2024-0133 ELSA-2024-0133: fence-agents security update (MODERATE) | больше 1 года назад | ||
| ELSA-2024-0116 ELSA-2024-0116: python-urllib3 security update (MODERATE) | больше 1 года назад | ||
| ELSA-2023-7753 ELSA-2023-7753: fence-agents security update (MODERATE) | больше 1 года назад | ||
| ELSA-2024-2985 ELSA-2024-2985: python39:3.9 and python39-devel:3.9 security update (MODERATE) | около 1 года назад | ||
| ROS-20240412-04 Множественные уязвимости salt | CVSS3: 8.1 | около 1 года назад | |
| ELSA-2024-2987 ELSA-2024-2987: python27:2.7 security update (MODERATE) | около 1 года назад |
Уязвимостей на страницу