vulnerability
CentOS Linux: CVE-2023-43804: Moderate: fence-agents security update (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:L/Au:S/C:C/I:C/A:N) | Oct 4, 2023 | Dec 13, 2023 | Jan 28, 2025 |
Severity
9
CVSS
(AV:N/AC:L/Au:S/C:C/I:C/A:N)
Published
Oct 4, 2023
Added
Dec 13, 2023
Modified
Jan 28, 2025
Description
urllib3 is a user-friendly HTTP client library for Python. urllib3 doesn't treat the `Cookie` HTTP header special or provide any helpers for managing cookies over HTTP, that is the responsibility of the user. However, it is possible for a user to specify a `Cookie` header and unknowingly leak information via HTTP redirects to a different origin if that user doesn't disable redirects explicitly. This issue has been patched in urllib3 version 1.26.17 or 2.0.5.
Solutions
centos-upgrade-fence-agents-allcentos-upgrade-fence-agents-amt-wscentos-upgrade-fence-agents-apccentos-upgrade-fence-agents-apc-snmpcentos-upgrade-fence-agents-bladecentercentos-upgrade-fence-agents-brocadecentos-upgrade-fence-agents-cisco-mdscentos-upgrade-fence-agents-cisco-ucscentos-upgrade-fence-agents-commoncentos-upgrade-fence-agents-computecentos-upgrade-fence-agents-debuginfocentos-upgrade-fence-agents-debugsourcecentos-upgrade-fence-agents-drac5centos-upgrade-fence-agents-eaton-snmpcentos-upgrade-fence-agents-emersoncentos-upgrade-fence-agents-epscentos-upgrade-fence-agents-heuristics-pingcentos-upgrade-fence-agents-hpbladecentos-upgrade-fence-agents-ibm-powervscentos-upgrade-fence-agents-ibm-vpccentos-upgrade-fence-agents-ibmbladecentos-upgrade-fence-agents-ifmibcentos-upgrade-fence-agents-ilo-moonshotcentos-upgrade-fence-agents-ilo-mpcentos-upgrade-fence-agents-ilo-sshcentos-upgrade-fence-agents-ilo2centos-upgrade-fence-agents-intelmodularcentos-upgrade-fence-agents-ipducentos-upgrade-fence-agents-ipmilancentos-upgrade-fence-agents-kdumpcentos-upgrade-fence-agents-kdump-debuginfocentos-upgrade-fence-agents-kubevirtcentos-upgrade-fence-agents-kubevirt-debuginfocentos-upgrade-fence-agents-mpathcentos-upgrade-fence-agents-redfishcentos-upgrade-fence-agents-rhevmcentos-upgrade-fence-agents-rsacentos-upgrade-fence-agents-rsbcentos-upgrade-fence-agents-sbdcentos-upgrade-fence-agents-scsicentos-upgrade-fence-agents-virshcentos-upgrade-fence-agents-vmware-restcentos-upgrade-fence-agents-vmware-soapcentos-upgrade-fence-agents-wticentos-upgrade-fence-agents-zvmcentos-upgrade-python3-urllib3
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.