VulnerableCode Package Details - pkg:rpm/redhat/rh-python38-python-urllib3@1.25.7-6?arch=el7

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:rpm/redhat/rh-python38-python-urllib3@1.25.7-6?arch=el7

Essentials
History (5)

purl	pkg:rpm/redhat/rh-python38-python-urllib3@1.25.7-6?arch=el7

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	4.0

Vulnerabilities affecting this package (5)

Vulnerability	Summary	Fixed by
VCID-efdj-sb7s-p3fk Aliases: CVE-2020-14422	Multiple vulnerabilities have been found in Python, the worst of which could result in a Denial of Service condition.	There are no reported fixed by versions.
VCID-gvgx-eq9r-d3d2 Aliases: CVE-2020-26116	Multiple vulnerabilities have been found in Python, the worst of which could result in the arbitrary execution of code.	There are no reported fixed by versions.
VCID-gxkt-bvtg-gbaj Aliases: CVE-2020-26137 GHSA-wqvq-5m8c-6g24 PYSEC-2020-148	urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of putrequest(). NOTE: this is similar to CVE-2020-26116.	There are no reported fixed by versions.
VCID-tyk4-kazt-kydj Aliases: CVE-2019-20907	Multiple vulnerabilities have been found in Python, the worst of which could result in a Denial of Service condition.	There are no reported fixed by versions.
VCID-v7cw-w79c-zfbh Aliases: CVE-2019-18874 GHSA-qfc5-mcwq-26q8 PYSEC-2019-41	psutil (aka python-psutil) through 5.6.5 can have a double free. This occurs because of refcount mishandling within a while or for loop that converts system data into a Python object.	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T14:15:17.259590+00:00	RedHat Importer	Affected by	VCID-v7cw-w79c-zfbh	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18874.json	38.0.0
2026-04-01T14:14:55.690801+00:00	RedHat Importer	Affected by	VCID-tyk4-kazt-kydj	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20907.json	38.0.0
2026-04-01T14:12:53.142487+00:00	RedHat Importer	Affected by	VCID-gxkt-bvtg-gbaj	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26137.json	38.0.0
2026-04-01T14:12:53.000967+00:00	RedHat Importer	Affected by	VCID-gvgx-eq9r-d3d2	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26116.json	38.0.0
2026-04-01T14:06:01.223844+00:00	RedHat Importer	Affected by	VCID-efdj-sb7s-p3fk	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14422.json	38.0.0