CVE-2018-18074 - The Requests package before 2.20.0 for Python sends an HTTP Authorization header to an http URI upon

CVE-2018-18074

Summary

The Requests package before 2.20.0 for Python sends an HTTP Authorization header to an http URI upon receiving a same-hostname https-to-http redirect, which makes it easier for remote attackers to discover credentials by sniffing the network.

References

Vulnerable Configurations

cpe:2.3:a:python:requests:0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.2.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.2.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.2.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.2.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.2.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.2.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.2.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.2.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.2.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.2.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.3.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.3.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.3.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.3.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.3.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.3.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.3.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.3.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.3.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.3.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.4.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.4.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.4.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.4.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.5.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.5.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.5.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.5.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.6.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.6.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.6.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.6.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.6.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.6.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.6.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.6.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.6.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.6.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.6.5:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.6.5:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.6.6:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.6.6:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.7.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.7.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.7.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.7.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.7.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.7.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.7.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.7.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.7.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.7.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.7.5:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.7.5:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.7.6:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.7.6:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.8.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.8.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.8.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.8.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.8.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.8.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.8.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.8.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.8.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.8.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.8.5:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.8.5:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.8.6:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.8.6:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.8.7:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.8.7:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.8.8:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.8.8:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.8.9:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.8.9:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.9.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.9.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.9.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.9.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.10.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.10.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.10.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.10.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.10.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.10.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.10.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.10.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.10.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.10.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.10.5:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.10.5:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.10.6:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.10.6:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.10.7:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.10.7:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.10.8:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.10.8:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.11.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.11.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.11.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.11.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.11.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.11.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.12.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.12.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.12.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.12.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.13.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.13.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.13.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.13.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.13.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.13.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.13.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.13.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.13.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.13.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.13.5:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.13.5:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.13.6:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.13.6:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.13.7:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.13.7:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.13.8:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.13.8:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.13.9:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.13.9:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.14.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.14.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.14.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.14.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.14.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:0.14.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:1.1.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:1.1.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:1.2.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:1.2.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:1.2.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:1.2.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.3.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.3.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.4.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.4.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.4.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.4.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.4.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.4.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.4.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.4.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.5.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.5.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.5.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.5.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.5.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.5.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.5.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.5.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.6.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.6.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.6.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.6.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.6.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.6.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.7.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.7.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.8.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.8.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.8.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.8.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.9.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.9.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.9.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.9.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.9.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.9.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.10.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.10.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.11.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.11.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.11.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.11.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.12.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.12.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.12.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.12.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.12.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.12.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.12.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.12.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.12.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.12.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.12.5:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.12.5:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.13.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.13.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.14.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.14.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.14.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.14.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.14.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.14.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.15.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.15.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.15.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.15.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.16.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.16.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.16.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.16.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.16.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.16.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.16.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.16.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.16.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.16.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.16.5:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.16.5:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.17.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.17.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.17.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.17.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.17.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.17.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.17.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.17.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.18.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.18.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.18.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.18.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.18.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.18.2:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.18.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.18.3:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.18.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.18.4:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.19.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.19.0:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.19.1:*:*:*:*:*:*:*
cpe:2.3:a:python:requests:2.19.1:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 25-07-2022 - 18:15)
Impact:
Exploitability:

CWE

CWE-522

CAPEC

Use of Captured Tickets (Pass The Ticket)
An adversary uses stolen Kerberos tickets to access systems that leverage the Kerberos authentication protocol. The Kerberos authentication protocol centers around a ticketing system which is used to request/grant access to services and to then access the requested services. An adversary can obtain any one of these tickets (e.g. Service Ticket, Ticket Granting Ticket, Silver Ticket, or Golden Ticket) to authenticate to a system without needing the account's credentials. Depending on the ticket obtained, the adversary may be able to access a particular resource or generate TGTs for any account within an Active Directory Domain.
Remote Services with Stolen Credentials
This pattern of attack involves an adversary that uses stolen credentials to leverage remote services such as RDP, telnet, SSH, and VNC to log into a system. Once access is gained, any number of malicious activities could be performed.
Signature Spoofing by Key Theft
An attacker obtains an authoritative or reputable signer's private signature key by theft and then uses this key to forge signatures from the original signer to mislead a victim into performing actions that benefit the attacker.
Use of Captured Hashes (Pass The Hash)
An adversary uses stolen hash values for a user's credentials (username and password) to access systems managed under the same credential framwork that leverage the Lan Man (LM) and/or NT Lan Man (NTLM) authentication protocols. When authenticating via LM or NTLM, the hashed credentials' associated plaintext credentials are not requried for successful authentication. Therefore, if an adversary can obtain the hashed credentials of a user, he can then pass these hash values to the server or service to authenticate without needing to brute-force the hashes to obtain their cleartext values. The adversary can then impersonate the user and laterally move within the network. This technique can be performed against any operating system which leverages the LM or NTLM protocols.
Session Sidejacking
Session sidejacking takes advantage of an unencrypted communication channel between a victim and target system. The attacker sniffs traffic on a network looking for session tokens in unencrypted traffic. Once a session token is captured, the attacker performs malicious actions by using the stolen token with the targeted application to impersonate the victim. This attack is a specific method of session hijacking, which is exploiting a valid session token to gain unauthorized access to a target system or information. Other methods to perform a session hijacking are session fixation, cross-site scripting, or compromising a user or server machine and stealing the session token.
Modify Existing Service
When an operating system starts, it also starts programs called services or daemons. Modifying existing services may break existing services or may enable services that are disabled/not commonly used.
Windows Admin Shares with Stolen Credentials
Windows systems have hidden network shares that are only accessible to administrators and allow files to be written to the local computer. Example network shares include: C$, ADMIN$ and IPC$. Adversaries may use valid administrator credentials to remotely access a network share to transfer files and execute code. It is possible for adversaries to use NTLM hashes to access administrator shares on systems with certain configuration and patch levels.
Password Recovery Exploitation
An attacker may take advantage of the application feature to help users recover their forgotten passwords in order to gain access into the system with the same privileges as the original user. Generally password recovery schemes tend to be weak and insecure. Most of them use only one security question . For instance, mother's maiden name tends to be a fairly popular one. Unfortunately in many cases this information is not very hard to find, especially if the attacker knows the legitimate user. These generic security questions are also re-used across many applications, thus making them even more insecure. An attacker could for instance overhear a coworker talking to a bank representative at the work place and supplying their mother's maiden name for verification purposes. An attacker can then try to log in into one of the victim's accounts, click on "forgot password" and there is a good chance that the security question there will be to provide mother's maiden name. A weak password recovery scheme totally undermines the effectiveness of a strong password scheme.
Use of Known Domain Credentials
An adversary uses stolen credentials (e.g., userid and password) to access systems managed under the same credential framework on a local network. Often, users are allowed to login to connected machines using the same password. Discovery of the password on one machine allows for lateral movement to those machines.

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:N/A:N

redhat via4

advisories

bugzilla

id	1643829
title	CVE-2018-18074 python-requests: Redirect from HTTPS to HTTP does not remove Authorization header

oval

comment Red Hat Enterprise Linux must be installed
oval oval:com.redhat.rhba:tst:20070304026

AND

comment Red Hat Enterprise Linux 7 is installed
oval oval:com.redhat.rhba:tst:20150364027
comment python-requests is earlier than 0:2.6.0-5.el7
oval oval:com.redhat.rhsa:tst:20192035001
comment python-requests is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhsa:tst:20192035002

rhsa

id	RHSA-2019:2035
released	2019-08-06
severity	Low
title	RHSA-2019:2035: python-requests security update (Low)

rpms

python-requests-0:2.6.0-5.el7
python3-pip-0:9.0.3-7.el7_7
python-virtualenv-0:15.1.0-4.el7_7
Cython-debugsource-0:0.28.1-7.module+el8.1.0+3111+de3f2d8e
PyYAML-debugsource-0:3.12-16.module+el8.1.0+3111+de3f2d8e
babel-0:2.5.1-9.module+el8.1.0+3111+de3f2d8e
numpy-debugsource-1:1.14.2-13.module+el8.1.0+3323+7ac3e00f
python-coverage-debugsource-0:4.5.1-4.module+el8.1.0+3111+de3f2d8e
python-lxml-debugsource-0:4.2.3-3.module+el8.1.0+3111+de3f2d8e
python-nose-docs-0:1.3.7-30.module+el8.1.0+3111+de3f2d8e
python-psycopg2-debuginfo-0:2.7.5-7.module+el8.1.0+3111+de3f2d8e
python-psycopg2-debugsource-0:2.7.5-7.module+el8.1.0+3111+de3f2d8e
python-psycopg2-doc-0:2.7.5-7.module+el8.1.0+3111+de3f2d8e
python-pymongo-debuginfo-0:3.6.1-11.module+el8.1.0+3446+c3d52da3
python-pymongo-debugsource-0:3.6.1-11.module+el8.1.0+3446+c3d52da3
python-sqlalchemy-doc-0:1.3.2-1.module+el8.1.0+2994+98e054d6
python2-0:2.7.17-1.module+el8.2.0+4561+f4e0d66a
python2-Cython-0:0.28.1-7.module+el8.1.0+3111+de3f2d8e
python2-Cython-debuginfo-0:0.28.1-7.module+el8.1.0+3111+de3f2d8e
python2-PyMySQL-0:0.8.0-10.module+el8.1.0+3111+de3f2d8e
python2-attrs-0:17.4.0-10.module+el8.1.0+3111+de3f2d8e
python2-babel-0:2.5.1-9.module+el8.1.0+3111+de3f2d8e
python2-backports-0:1.0-15.module+el8.1.0+3111+de3f2d8e
python2-backports-ssl_match_hostname-0:3.5.0.1-11.module+el8.1.0+3111+de3f2d8e
python2-bson-0:3.6.1-11.module+el8.1.0+3446+c3d52da3
python2-bson-debuginfo-0:3.6.1-11.module+el8.1.0+3446+c3d52da3
python2-chardet-0:3.0.4-10.module+el8.1.0+3111+de3f2d8e
python2-coverage-0:4.5.1-4.module+el8.1.0+3111+de3f2d8e
python2-coverage-debuginfo-0:4.5.1-4.module+el8.1.0+3111+de3f2d8e
python2-debug-0:2.7.17-1.module+el8.2.0+4561+f4e0d66a
python2-debuginfo-0:2.7.17-1.module+el8.2.0+4561+f4e0d66a
python2-debugsource-0:2.7.17-1.module+el8.2.0+4561+f4e0d66a
python2-devel-0:2.7.17-1.module+el8.2.0+4561+f4e0d66a
python2-dns-0:1.15.0-10.module+el8.1.0+3111+de3f2d8e
python2-docs-0:2.7.16-2.module+el8.1.0+3111+de3f2d8e
python2-docs-info-0:2.7.16-2.module+el8.1.0+3111+de3f2d8e
python2-docutils-0:0.14-12.module+el8.1.0+3111+de3f2d8e
python2-funcsigs-0:1.0.2-13.module+el8.1.0+3111+de3f2d8e
python2-idna-0:2.5-7.module+el8.1.0+3111+de3f2d8e
python2-ipaddress-0:1.0.18-6.module+el8.1.0+3111+de3f2d8e
python2-jinja2-0:2.10-8.module+el8.1.0+3111+de3f2d8e
python2-libs-0:2.7.17-1.module+el8.2.0+4561+f4e0d66a
python2-lxml-0:4.2.3-3.module+el8.1.0+3111+de3f2d8e
python2-lxml-debuginfo-0:4.2.3-3.module+el8.1.0+3111+de3f2d8e
python2-markupsafe-0:0.23-19.module+el8.1.0+3111+de3f2d8e
python2-mock-0:2.0.0-13.module+el8.1.0+3111+de3f2d8e
python2-nose-0:1.3.7-30.module+el8.1.0+3111+de3f2d8e
python2-numpy-1:1.14.2-13.module+el8.1.0+3323+7ac3e00f
python2-numpy-debuginfo-1:1.14.2-13.module+el8.1.0+3323+7ac3e00f
python2-numpy-doc-1:1.14.2-13.module+el8.1.0+3323+7ac3e00f
python2-numpy-f2py-1:1.14.2-13.module+el8.1.0+3323+7ac3e00f
python2-pip-0:9.0.3-16.module+el8.2.0+5478+b505947e
python2-pip-wheel-0:9.0.3-16.module+el8.2.0+5478+b505947e
python2-pluggy-0:0.6.0-8.module+el8.1.0+3111+de3f2d8e
python2-psycopg2-0:2.7.5-7.module+el8.1.0+3111+de3f2d8e
python2-psycopg2-debug-0:2.7.5-7.module+el8.1.0+3111+de3f2d8e
python2-psycopg2-debug-debuginfo-0:2.7.5-7.module+el8.1.0+3111+de3f2d8e
python2-psycopg2-debuginfo-0:2.7.5-7.module+el8.1.0+3111+de3f2d8e
python2-psycopg2-tests-0:2.7.5-7.module+el8.1.0+3111+de3f2d8e
python2-py-0:1.5.3-6.module+el8.1.0+3111+de3f2d8e
python2-pygments-0:2.2.0-20.module+el8.1.0+3111+de3f2d8e
python2-pymongo-0:3.6.1-11.module+el8.1.0+3446+c3d52da3
python2-pymongo-debuginfo-0:3.6.1-11.module+el8.1.0+3446+c3d52da3
python2-pymongo-gridfs-0:3.6.1-11.module+el8.1.0+3446+c3d52da3
python2-pysocks-0:1.6.8-6.module+el8.1.0+3111+de3f2d8e
python2-pytest-0:3.4.2-13.module+el8.1.0+3111+de3f2d8e
python2-pytest-mock-0:1.9.0-4.module+el8.1.0+3111+de3f2d8e
python2-pytz-0:2017.2-12.module+el8.1.0+3111+de3f2d8e
python2-pyyaml-0:3.12-16.module+el8.1.0+3111+de3f2d8e
python2-pyyaml-debuginfo-0:3.12-16.module+el8.1.0+3111+de3f2d8e
python2-requests-0:2.20.0-3.module+el8.2.0+4577+feefd9b8
python2-rpm-macros-0:3-38.module+el8.1.0+3111+de3f2d8e
python2-scipy-0:1.0.0-20.module+el8.1.0+3323+7ac3e00f
python2-scipy-debuginfo-0:1.0.0-20.module+el8.1.0+3323+7ac3e00f
python2-setuptools-0:39.0.1-11.module+el8.1.0+3446+c3d52da3
python2-setuptools-wheel-0:39.0.1-11.module+el8.1.0+3446+c3d52da3
python2-setuptools_scm-0:1.15.7-6.module+el8.1.0+3111+de3f2d8e
python2-six-0:1.11.0-5.module+el8.1.0+3111+de3f2d8e
python2-sqlalchemy-0:1.3.2-1.module+el8.1.0+2994+98e054d6
python2-test-0:2.7.17-1.module+el8.2.0+4561+f4e0d66a
python2-tkinter-0:2.7.17-1.module+el8.2.0+4561+f4e0d66a
python2-tools-0:2.7.17-1.module+el8.2.0+4561+f4e0d66a
python2-urllib3-0:1.24.2-1.module+el8.1.0+3280+19512f10
python2-virtualenv-0:15.1.0-19.module+el8.1.0+3507+d69c168d
python2-wheel-1:0.31.1-2.module+el8.1.0+3725+aac5cd17
python2-wheel-wheel-1:0.31.1-2.module+el8.1.0+3725+aac5cd17
scipy-debugsource-0:1.0.0-20.module+el8.1.0+3323+7ac3e00f
platform-python-pip-0:9.0.3-16.el8
python3-pip-0:9.0.3-16.el8
python3-pip-wheel-0:9.0.3-16.el8
python3-pip-0:9.0.3-7.el7_8
python-virtualenv-0:15.1.0-4.el7_8

refmap via4

confirm	http://docs.python-requests.org/en/master/community/updates/#release-and-version-history
misc	https://bugs.debian.org/910766 https://github.com/requests/requests/commit/c45d7c49ea75133e52ab22a8e9e13173938e36ff https://github.com/requests/requests/issues/4716 https://github.com/requests/requests/pull/4718
suse	openSUSE-SU-2019:1754
ubuntu	USN-3790-1 USN-3790-2

Last major update

25-07-2022 - 18:15

Published

09-10-2018 - 17:29

Last modified

25-07-2022 - 18:15