Latest version: v2.2.1
| CVE/PVE | Vulnerability ID | Advisory | Affected versions | Severity | Severity Score |
|---|---|---|---|---|---|
| CVE-2023-45803 | 61893 |
Urllib3 1.26.18 and 2.0.7 include a fix for CVE-2023-45803: Request b… |
|
MEDIUM | 4.2 |
| CVE-2023-43804 | 61601 |
Urllib3 1.26.17 and 2.0.5 include a fix for CVE-2023-43804: Urllib3 d… |
|
HIGH | 8.1 |
| CVE-2016-9015 | 35691 |
Urllib3 version 1.18.1 includes a fix for CVE-2016-9015: Versions 1.1… |
|
LOW | 3.7 |
| CVE-2021-33503 | 43975 |
Urllib3 1.26.5 includes a fix for CVE-2021-33503: When provided with … |
|
HIGH | 7.5 |
| CVE-2021-28363 | 40014 |
Urllib3 1.26.4 includes a fix for CVE-2021-28363: The urllib3 library… |
|
MEDIUM | 6.5 |
| CVE-2020-26137 | 38834 |
Urllib3 1.25.9 includes a fix for CVE-2020-26137: Urllib3 before 1.25… |
|
MEDIUM | 6.5 |
| CVE-2020-7212 | 27519 |
The _encode_invalid_chars function in util/url.py in the urllib3 libr… |
|
HIGH | 7.5 |
| CVE-2019-11236 | 37055 |
Urllib3 1.24.3 includes a fix for CVE-2019-11236: CRLF injection is p… |
|
MEDIUM | 6.1 |
| CVE-2019-11324 | 37071 |
Affected versions of urllib3 are vulnerable Improper Certificate Vali… |
|
HIGH | 7.5 |
| CVE-2018-20060 | 36541 |
urllib3 before version 1.23 does not remove the Authorization HTTP he… |
|
CRITICAL | 9.8 |
| PVE-2024-99834 | 65595 |
Various versions of urllib3 are vulnerable due to insecure default SS… |
|
- | - |