PhotonPHSA-2021-0442

HistoryOct 13, 2021 - 12:00 a.m.

Critical Photon OS Security Update - PHSA-2021-0442

Vulners
Photon
Critical Photon OS Security Update - PHSA-2021-0442

2021-10-1300:00:00

github.com

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.01 Low

EPSS

Percentile

83.8%

JSON

Updates of [‘python-urllib3’] packages of Photon OS have been released.

OSVersionArchitecturePackageVersionFilename
Photon1.0noarchpython-urllib3< 1.26.6-1.ph1python-urllib3-1.26.6-1.ph1.noarch.rpm

OS	Version	Architecture	Package	Version	Filename
Photon	1.0	noarch	python-urllib3	< 1.26.6-1.ph1	python-urllib3-1.26.6-1.ph1.noarch.rpm

openvas 31

nessus 69

debian 2

osv 14

mageia 2

freebsd 1

ubuntu 1

ibm 9

photon 5

redhat 10

suse 6

centos 3

oraclelinux 7

fedora 5

amazon 8

almalinux 1

rocky 2

nvd 2

redhatcve 3

ubuntucve 1

debiancve 2

veracode 3

prion 2

f5 2

github 2

cvelist 1

cbl_mariner 2

redos 1

cve 1

archlinux 1

openvas

Debian: Security Advisory (DLA-2686-1)

2021-06-16 00:00:00

Ubuntu: Security Advisory (USN-3990-1)

2019-05-22 00:00:00

Mageia: Security Advisory (MGASA-2019-0258)

2022-01-28 00:00:00

nessus

Debian DLA-2686-1 : python-urllib3 security update

2021-06-16 00:00:00

Photon OS 2.0: Python PHSA-2021-2.0-0393

2021-09-27 00:00:00

FreeBSD : urllib3 -- multiple vulnerabilities (87270ba5-03d3-11ea-b81f-3085a9a95629)

2019-11-27 00:00:00

debian

[SECURITY] [DLA 2686-1] python-urllib3 security update

2021-06-15 18:34:44

[SECURITY] [DLA 3610-1] python-urllib3 security update

2023-10-08 11:06:20

osv

python-urllib3 - security update

2021-06-15 00:00:00

python-urllib3 - security update

2023-10-08 00:00:00

Moderate: python27:2.7 security, bug fix, and enhancement update

2020-04-28 08:55:59

mageia

Updated python-urllib3 packages fix security vulnerability

2019-09-07 00:09:08

Updated python-pip packages fix security vulnerabilities

2020-01-28 14:32:54

freebsd

urllib3 -- multiple vulnerabilities

2018-12-11 00:00:00

ubuntu

urllib3 vulnerabilities

2019-05-21 00:00:00

ibm

Security Bulletin: IBM Cloud Pak for Data Scheduling is vulnerable to multiple vulnerabilities (CVE-2019-11236, CVE-2020-26137, CVE-2021-33503)

2023-12-06 16:00:11

Security Bulletin: IBM Spectrum Symphony with urllib3 could allow a remote attacker to obtain sensitive information

2024-02-28 15:45:03

Security Bulletin: Vulnerability in Python-urllib3 affects IBM Cloud Pak for Data System 2.0 (CPDS2.0)

2024-03-11 13:16:57

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0393

2021-09-21 00:00:00

Important Photon OS Security Update - PHSA-2021-3.0-0246

2021-06-02 00:00:00

Important Photon OS Security Update - PHSA-2021-0246

2021-06-02 00:00:00

redhat

(RHSA-2020:2068) Moderate: python-pip security update

2020-05-12 14:03:16

(RHSA-2020:1916) Moderate: python-pip security update

2020-04-28 09:30:31

(RHSA-2020:0850) Moderate: python-pip security update

2020-03-17 13:10:26

suse

Security update for python-urllib3 (moderate)

2019-09-14 00:00:00

Security update for python-urllib3 (moderate)

2019-09-15 00:00:00

Security update for python-urllib3 (moderate)

2020-12-13 00:00:00

centos

python3 security update

2020-03-18 19:33:57

python security update

2019-08-30 04:04:34

python security update

2020-03-25 19:10:05

oraclelinux

python-pip security update

2020-05-19 00:00:00

python-pip security update

2020-05-05 00:00:00

python-urllib3 security update

2019-08-13 00:00:00

fedora

[SECURITY] Fedora 30 Update: python-pip-19.0.3-6.fc30

2020-01-20 03:19:41

[SECURITY] Fedora 31 Update: python-pip-19.1.1-7.fc31

2020-01-08 11:55:39

[SECURITY] Fedora 30 Update: python-urllib3-1.24.2-1.fc30

2019-04-27 21:35:01

amazon

Medium: python-pip

2020-02-05 16:26:00

Medium: python-pip

2020-02-04 22:44:00

Medium: python-virtualenv

2020-04-20 20:48:00

almalinux

Moderate: python27:2.7 security, bug fix, and enhancement update

2020-04-28 08:55:59

rocky

python27:2.7 security, bug fix, and enhancement update

2020-04-28 08:55:59

python-urllib3 security update

2021-05-18 05:42:27

nvd

CVE-2019-11324

2019-04-18 21:29:00

CVE-2021-33503

2021-06-29 11:15:07

redhatcve

CVE-2019-11324

2019-04-23 21:50:19

CVE-2018-20060

2021-08-22 13:20:42

CVE-2021-33503

2021-06-06 01:54:37

ubuntucve

CVE-2018-20060

2018-12-11 00:00:00

debiancve

CVE-2018-20060

2018-12-11 17:29:00

CVE-2019-11324

2019-04-18 21:29:00

veracode

SSL Hostname Verification Bypass

2019-04-22 03:35:22

Information Disclosure

2018-12-12 03:50:22

Carriage-Return Line-Feed (CRLF) Injection

2020-10-01 01:43:17

prion

Design/Logic Flaw

2019-04-18 21:29:00

Open redirect

2021-06-29 11:15:00

K000133448 : Python urllib3 vulnerability CVE-2019-11324

2023-04-27 00:00:00

K000133668 : Python urllib3 vulnerability CVE-2018-20060

2023-04-27 00:00:00

github

Improper Certificate Validation in urllib3

2019-04-19 16:55:10

Exposure of Sensitive Information to an Unauthorized Actor in urllib3

2018-12-12 15:52:07

cvelist

CVE-2019-11324

2019-04-18 00:00:00

cbl_mariner

CVE-2021-33503 affecting package python-urllib3 1.25.9-2

2021-08-11 06:39:25

CVE-2021-33503 affecting package python-urllib3 for versions less than 1.25.9-3

2022-04-09 06:51:50

redos

ROS-20220125-01

2022-01-25 00:00:00

cve

CVE-2018-20060

2018-12-11 17:29:00

archlinux

[ASA-202106-25] python-urllib3: denial of service

2021-06-09 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.01 Low

EPSS

Percentile

83.8%

JSON

Related for PHSA-2021-0442