CVE-2024-47081

June 11, 2025 invoker category_news

Security Update News

Update Information

Title CVE-2024-47081
Update ID CVE-2024-47081
Type cve
Published 2025-06-09T18:15:24
Last Updated 2025-06-09T18:15:24

Security Impact

CVSS Score 5.3
Severity MEDIUM
Attack Vector NETWORK

Affected CVEs

  • CVE-2024-47081

Update Details

Requests is a HTTP library. Due to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third parties for specific maliciously-crafted URLs. Users should upgrade to version 2.32.4 to receive a fix. For older versions of Requests, use of the .netrc file can be disabled with `trust_env=False` on one’s Requests Session.

View Advisory Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.