• Home
  • Encyclopedia
  • Endpoint Vulnerability
  • CVE-2018-18074python3-requests: python-requests: Redirect from HTTPS to HTTP does not remove Authorization header [epel-6]

At a glance:

ID 62127
Created Jan 28, 2020
Description Updated Jan 28, 2020
Severity
Coverage FortiClient

Endpoint Vulnerability

CVE-2018-18074python3-requests: python-requests: Redirect from HTTPS to HTTP does not remove Authorization header [epel-6]

Description

python-requests: Redirect from HTTPS to HTTP does not remove Authorization header [epel-6]

Affected Products

python3-requests

Vendor

https://bugzilla.redhat.com/show_bug.cgi?id=1778143,

References

CVE-2018-18074,