suse · CVE-2014-1829

Quick triage

Priority: medium Published: 2021-05-30 13:19:36 UTC Updated: 2026-04-18 18:42:17 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2014-1829 severity moderate: SUSE including 71 source package names (aws-cli-py36-1.19.9-6.3.15, libpython3_6m1_0-3.6.15-6.61.5, …), 155 product×package rows across 64 product lines (HPE Helion OpenStack 8, SUSE Cloud 2.0, … (64 product lines)): Fixed 79, Known Not Affected 76.

Description:

Requests (aka python-requests) before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request.

cvelogic Threat Intelligence