Security Advisory

CVE-2021-33503

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-06-29 10:55:35

Last updated 2024-08-03 23:50:42

Assigner mitre

State PUBLISHED

Description

An issue was discovered in urllib3 before 1.26.5. When provided with a URL containing many @ characters in the authority component, the authority regular expression exhibits catastrophic backtracking, causing a denial of service if a URL were passed as a parameter or redirected to via an HTTP redirect.

← Browse all CVEs View on cve.org ↗