Msrc Azl3 Python-Urllib3 2.0.7-1 On Azure Linux 3.0 vulnerabilities

4 known vulnerabilities affecting msrc/azl3_python-urllib3_2.0.7-1_on_azure_linux_3.0.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM4

Vulnerabilities

Page 1 of 1
CVE-2025-50182MEDIUMCVSS 5.32025-06-10
CVE-2025-50182 [MEDIUM] CWE-601 urllib3 does not control redirects in browsers and Node.js urllib3 does not control redirects in browsers and Node.js FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with
msrc
CVE-2024-37891MEDIUMCVSS 4.42024-06-11
CVE-2024-37891 [MEDIUM] CWE-669 Proxy-Authorization request header isn't stripped during cross-origin redirects in urllib3 Proxy-Authorization request header isn't stripped during cross-origin redirects in urllib3 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most r
msrc
CVE-2023-43804MEDIUMCVSS 5.92023-10-10
CVE-2023-43804 [MEDIUM] CWE-200 `Cookie` HTTP header isn't stripped on cross-origin redirects `Cookie` HTTP header isn't stripped on cross-origin redirects FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source librarie
msrc
CVE-2023-45803MEDIUMCVSS 4.22023-10-10
CVE-2023-45803 [MEDIUM] CWE-200 Request body not stripped after redirect in urllib3 Request body not stripped after redirect in urllib3 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the dis
msrc