CVE-2021-41945

Name
CVE-2021-41945
Description
Encode OSS httpx < 0.23.0 is affected by improper input validation in `httpx.URL`, `httpx.Client` and some functions using `httpx.URL.copy_with`.
NVD Severity
high
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://github.com/encode/httpx
MISC https://github.com/encode/httpx/discussions/1831
MISC https://gist.github.com/lebr0nli/4edb76bbd3b5ff993cf44f2fbce5e571
MISC http://encode.com
MISC https://github.com/encode/httpx/issues/2184
MISC https://github.com/encode/httpx/releases/tag/0.23.0

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:encode:httpx:1.0.0:beta0:*:*:*:python:*:* py3-httpx == None == 1.0.0
cpe:2.3:a:encode:httpx:*:*:*:*:*:python:*:* py3-httpx >= None <= 0.19.0

Vulnerable and fixed packages

Source package Branch Version Maintainer Status