CVE-2021-33503 log

Severity Medium
Remote Yes
Type Denial of service
A security issue has been found in python-urllib3 before version 1.26.5. When provided with a URL containing many @ characters in the authority component, the authority regular expression exhibits catastrophic backtracking, causing a denial of service if a URL was passed as a parameter or redirected to via an HTTP redirect.
Group Package Affected Fixed Severity Status Ticket
AVG-2038 python-urllib3 1.26.4-2 1.26.5-1 Medium Fixed
Date Advisory Group Package Severity Type
09 Jun 2021 ASA-202106-25 AVG-2038 python-urllib3 Medium denial of service