Vulnerability in the urllib3 module of the Python programming language interpreter is related to the lack of protection of the
of service data. Exploitation of the vulnerability could allow an attacker acting remotely to disclose
protected information

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64python3-urllib3<= 1.26.5-3UNKNOWN

OS	Version	Architecture	Package	Version	Filename
redos	7.3	x86_64	python3-urllib3	<= 1.26.5-3	UNKNOWN

osv 12

openvas 20

redhat 27

nessus 44

ibm 21

fedora 3

cve 1

cbl_mariner 1

amazon 1

alpinelinux 1

nvd 1

github 1

wolfi 1

ubuntucve 1

prion 1

veracode 1

cgr 1

redhatcve 1

cvelist 1

debiancve 1

almalinux 5

photon 1

oraclelinux 5

cloudfoundry 1

ubuntu 2

rocky 1

hp 2

oracle 1

osv

urllib3's request body not stripped after redirect from 303 status changes request method to GET

2023-10-17 20:15:25

CVE-2023-45803

2023-10-17 20:15:10

PYSEC-2023-212

2023-10-17 20:15:00

openvas

Huawei EulerOS: Security Advisory for python-urllib3 (EulerOS-SA-2024-1185)

2024-02-09 00:00:00

Huawei EulerOS: Security Advisory for python-urllib3 (EulerOS-SA-2024-1205)

2024-02-09 00:00:00

Fedora: Security Advisory for python-urllib3 (FEDORA-2023-932b0c86f4)

2023-10-22 00:00:00

redhat

(RHSA-2024:2734) Moderate: Red Hat OpenStack Platform 17.1 (python-urllib3) security update

2024-05-22 20:31:21

(RHSA-2024:0588) Moderate: python-urllib3 security update

2024-01-30 12:53:27

(RHSA-2024:2952) Moderate: resource-agents security and bug fix update

2024-05-22 06:35:10

nessus

SUSE SLED12 / SLES12 Security Update : python-urllib3 (SUSE-SU-2023:4468-1)

2023-11-17 00:00:00

Fedora 37 : python-urllib3 (2023-dede912109)

2023-11-03 00:00:00

RHEL 8 : Red Hat OpenStack Platform 17.1 (python-urllib3) (RHSA-2024:2734)

2024-05-22 00:00:00

ibm

Security Bulletin: urllib3 is vulnerable to CVE-2023-45803 used in IBM Maximo Application Suite - Monitor Component

2024-02-27 16:20:30

Security Bulletin: Vulnerability in urllib3 affects IBM Process Mining CVE-2023-45803

2024-01-05 16:45:02

Security Bulletin: IBM Spectrum Symphony with urllib3 could allow a remote authenticated attacker to obtain sensitive information

2024-02-28 16:17:55

fedora

[SECURITY] Fedora 38 Update: python-urllib3-1.26.18-1.fc38

2023-10-21 01:30:09

[SECURITY] Fedora 37 Update: python-urllib3-1.26.18-1.fc37

2023-11-03 01:10:53

[SECURITY] Fedora 39 Update: python-urllib3-1.26.18-1.fc39

2023-11-03 19:01:21

cve

CVE-2023-45803

2023-10-17 20:15:10

cbl_mariner

CVE-2023-45803 affecting package python-urllib3 for versions less than 1.26.18-1

2023-11-08 02:07:28

amazon

Medium: python-urllib3

2024-01-03 21:04:00

alpinelinux

CVE-2023-45803

2023-10-17 20:15:10

nvd

CVE-2023-45803

2023-10-17 20:15:10

github

urllib3's request body not stripped after redirect from 303 status changes request method to GET

2023-10-17 20:15:25

wolfi

CVE-2023-45803 vulnerabilities

2024-07-01 09:08:36

ubuntucve

CVE-2023-45803

2023-10-17 00:00:00

prion

Design/Logic Flaw

2023-10-17 20:15:00

veracode

Information Disclosure

2023-10-19 07:19:20

cgr

CVE-2023-45803 vulnerabilities

2024-05-19 03:07:16

redhatcve

CVE-2023-45803

2023-10-29 14:55:37

cvelist

CVE-2023-45803 Request body not stripped after redirect in urllib3

2023-10-17 19:43:45

debiancve

CVE-2023-45803

2023-10-17 20:15:10

almalinux

Moderate: resource-agents security and bug fix update

2024-05-22 00:00:00

Moderate: python-urllib3 security update

2024-01-10 00:00:00

Moderate: python-urllib3 security update

2024-01-25 00:00:00

photon

Moderate Photon OS Security Update - PHSA-2024-5.0-0211

2024-02-16 00:00:00

oraclelinux

python-urllib3 security update

2024-01-10 00:00:00

python-urllib3 security update

2024-01-25 00:00:00

fence-agents security and bug fix update

2024-05-23 00:00:00

cloudfoundry

USN-6473-1: urllib3 vulnerabilities | Cloud Foundry

2023-11-09 00:00:00

ubuntu

urllib3 vulnerabilities

2023-11-07 00:00:00

pip vulnerabilities

2023-11-15 00:00:00

rocky

fence-agents security and bug fix update

2024-06-14 13:59:30

HP ThinPro 8.1 SP 2 Security Updates

2024-04-12 00:00:00

HP ThinPro 8.0 SP 8 Security Updates

2024-03-01 00:00:00

oracle

Oracle Critical Patch Update Advisory - April 2024

2024-04-16 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

4.2 Medium

CVSS3

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N

6.5 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

10.0%

JSON

Related for ROS-20240403-11