vulnerability
Ubuntu: (Multiple Advisories) (CVE-2019-11236): urllib3 vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:P/A:N) | Apr 15, 2019 | May 22, 2019 | Apr 16, 2026 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Published
Apr 15, 2019
Added
May 22, 2019
Modified
Apr 16, 2026
Description
In the urllib3 library through 1.24.1 for Python, CRLF injection is possible if the attacker controls the request parameter.
Solutions
ubuntu-pro-upgrade-python-urllib3ubuntu-pro-upgrade-python3-urllib3ubuntu-upgrade-python-urllib3ubuntu-upgrade-python3-urllib3
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.