Urllib3

Latest version: v2.2.3

Vulnerabilities (13)

CVE/PVE	Vulnerability ID	Advisory	Affected versions	Severity	Severity Score
CVE-2023-45803	61893	Urllib3 1.26.18 and 2.0.7 include a fix for CVE-2023-45803: Request b…	<1.26.18 >=2.0.0a1,<2.0.7	MEDIUM	4.2
CVE-2024-37891	71608	Urllib3's ProxyManager ensures that the Proxy-Authorization header is…	<=1.26.18 >=2.0.0a1,<=2.2.1	-	-
CVE-2023-43804	61601	Urllib3 1.26.17 and 2.0.5 include a fix for CVE-2023-43804: Urllib3 d…	<1.26.17 >=2.0.0a1,<2.0.5	HIGH	8.1
CVE-2016-9015	35691	Urllib3 version 1.18.1 includes a fix for CVE-2016-9015: Versions 1.1…	==1.17 ==1.18	LOW	3.7
CVE-2021-33503	43975	Urllib3 1.26.5 includes a fix for CVE-2021-33503: When provided with …	<1.26.5	HIGH	7.5
CVE-2021-28363	40014	Urllib3 1.26.4 includes a fix for CVE-2021-28363: The urllib3 library…	>=1.26.0,<1.26.4	MEDIUM	6.5
CVE-2020-26137	38834	Urllib3 1.25.9 includes a fix for CVE-2020-26137: Urllib3 before 1.25…	<1.25.9	MEDIUM	6.5
CVE-2020-7212	27519	The _encode_invalid_chars function in util/url.py in the urllib3 libr…	>=1.25.2,<=1.25.7	HIGH	7.5
CVE-2019-11236	37055	Urllib3 1.24.3 includes a fix for CVE-2019-11236: CRLF injection is p…	<1.24.3	MEDIUM	6.1
CVE-2018-25091	71562	Affected versions of urllib3 affected versions are vulnerable due to …	<1.24.2	MEDIUM	6.1
CVE-2019-11324	37071	Affected versions of urllib3 are vulnerable Improper Certificate Vali…	<1.24.2	HIGH	7.5
CVE-2018-20060	36541	urllib3 before version 1.23 does not remove the Authorization HTTP he…	<1.23	CRITICAL	9.8
PVE-2024-99834	65595	Affected versions of urllib3 contain insecure default SSL/TLS setting…	>=0,<1.8	HIDDEN	X.Y