Published: 23/12/2022 Updated: 23/01/2023

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 0

An issue discovered in Python Charmers Future 0.18.2 and previous versions allows remote malicious users to cause a denial of service via crafted Set-Cookie header from malicious web server.

Vulnerable Product	Search on Vulmon	Subscribe to Product
pythoncharmers python-future

Debian Bug report logs - #1031699 python-future: CVE-2022-40899 Package: src:python-future; Maintainer for src:python-future is Debian Python Team <team+python@trackerdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 20 Feb 2023 20:42:01 UTC Severity: important Tags: security, upstream F ...

Synopsis Important: Satellite 6133 Async Security Update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic Updated Satellite 613 packages that fixes important security bugs and severalregular bugs are now available for R ...

Synopsis Moderate: RHUI 440 release - Security Fixes, Bug Fixes, and Enhancements Update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An updated version of Red Hat Update Infrastructure (RHUI) is now available RHUI 4 ...

NVD-CWE-noinfo https://pypi.org/project/future/https://github.com/python/cpython/pull/17157 https://github.com/PythonCharmers/python-future/blob/master/src/future/backports/http/cookiejar.py#L215 https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages/https://github.com/PythonCharmers/python-future/pull/610 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031699 https://nvd.nist.gov

CVE-2022-40899

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect