CVE-2026-44431
MEDIUMurllib3: Sensitive headers forwarded across origins in proxied low-level redirects
Title source: cnaDescription
urllib3 is an HTTP client library for Python. From 1.23 to before 2.7.0, cross-origin redirects followed from the low-level API via ProxyManager.connection_from_url().urlopen(..., assert_same_host=False) still forward these sensitive headers. This vulnerability is fixed in 2.7.0.
References (1)
Core 1
Core References
X_Refsource_Confirm x_refsource_confirm
https://github.com/urllib3/urllib3/security/advisories/GHSA-qccp-gfcp-xxvc
Scores
CVSS v3
5.3
EPSS
0.0001
EPSS Percentile
2.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-200
Status
published
Products (3)
pypi/urllib3
1.23 - 2.7.0PyPI
python/urllib3
1.23 - 2.7.0
urllib3/urllib3
>= 1.23, < 2.7.0
Published
May 13, 2026
Tracked Since
May 13, 2026