Tag
cve-2023-32681
Safeguard articles tagged "cve-2023-32681" — guides, analysis, and best practices for software supply chain and application security.
2 articles
Vulnerability Analysis
Python requests library proxy-auth credential leak (CVE-2023-32681)
CVE-2023-32681 lets Python's requests library leak Proxy-Authorization credentials to destination servers on HTTPS redirects. Here's the impact, timeline, and fix.
Dec 31, 20258 min read
Vulnerability Analysis
CVE-2023-32681: requests leaks Proxy-Authorization on red...
A malicious proxy could capture Proxy-Authorization credentials from Python's requests library when redirects crossed to HTTPS, before v2.31.0.
Oct 7, 20258 min read