AVG-2060 log

Package python-fastapi
Status Fixed
Severity Medium
Type cross-site request forgery
Affected 0.65.1-1
Fixed 0.65.2-1
Current 0.115.6-3 [extra-testing]
0.115.6-2 [extra]
Ticket None
Created Wed Jun 9 19:05:21 2021
Issue Severity Remote Type Description
CVE-2021-32677 Medium Yes Cross-site request forgery
FastAPI versions lower than 0.65.2 that used cookies for authentication in path operations that received JSON payloads sent by browsers were vulnerable to a...
Date Advisory Package Type
01 Jul 2021 ASA-202107-6 python-fastapi cross-site request forgery