AVG-1485 log
| Package | python-bottle, python2-bottle |
| Status | Fixed |
| Severity | Medium |
| Type | incorrect calculation |
| Affected | 0.12.18-3 |
| Fixed | 0.12.19-1 |
| Current | 0.12.25-4 [extra] |
| Ticket | None |
| Created | Wed Jan 20 19:42:06 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2020-28473 | Medium | Yes | Incorrect calculation | The package python-bottle from 0 and before 0.12.19 are vulnerable to Web Cache Poisoning by using a vector called parameter cloaking. When the attacker can... |