CVE-2023-43804

MEDIUM

urllib3 <1.26.17, <2.0.5 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-43804. PoCs published by JawadPy.

AI-analyzed exploit summary The repository contains functional exploit code for CVE-2023-43804, demonstrating cookie leakage in urllib3 versions < 2.0.6 via a Flask redirect scenario. The PoC includes a server and client script to showcase the vulnerability.

Description

urllib3 is a user-friendly HTTP client library for Python. urllib3 doesn't treat the `Cookie` HTTP header special or provide any helpers for managing cookies over HTTP, that is the responsibility of the user. However, it is possible for a user to specify a `Cookie` header and unknowingly leak information via HTTP redirects to a different origin if that user doesn't disable redirects explicitly. This issue has been patched in urllib3 version 1.26.17 or 2.0.5.

Exploits (1)

github WORKING POC 1 stars
by JawadPy · pythonpoc
https://github.com/JawadPy/CVE-Exploit-Collection/tree/main/CVE-2023-43804-Exploit

The repository contains functional exploit code for CVE-2023-43804, demonstrating cookie leakage in urllib3 versions < 2.0.6 via a Flask redirect scenario. The PoC includes a server and client script to showcase the vulnerability.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: urllib3 < 2.0.6
No auth needed
Prerequisites: urllib3 version < 2.0.6 · Flask server for redirect scenario
devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (10)

Core 10
Core References

Scores

CVSS v3 5.9
EPSS 0.0095
EPSS Percentile 76.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N

Details

CWE
CWE-200
Status published
Products (6)
debian/debian_linux 10.0
fedoraproject/fedora 37
fedoraproject/fedora 38
fedoraproject/fedora 39
pypi/urllib3 2.0.0 - 2.0.6PyPI
python/urllib3 < 1.26.17
Published Oct 04, 2023
Tracked Since Feb 18, 2026