Security Advisory

CVE-2024-47081

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-06-09 17:57:47

Last updated 2025-06-09 18:40:40

Assigner GitHub_M

State PUBLISHED

Description

Requests is a HTTP library. Due to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third parties for specific maliciously-crafted URLs. Users should upgrade to version 2.32.4 to receive a fix. For older versions of Requests, use of the .netrc file can be disabled with `trust_env=False` on ones Requests Session.

← Browse all CVEs View on cve.org ↗