urllib3 - CVE-2025-66471
urllib3 is vulnerable to Denial-Of-Service (DoS). The vulnerability is due to improper handling of highly compressed data in the streaming API, where decompression continues until the requested chunk size is satisfied, allowing a small, highly compressed response to be fully decompressed in a single operation, leading to excessive CPU usage and large memory allocation.
CVSS Score: 7.8 - High
CVE Link: http://nvd.nist.gov/vuln/detail/CVE-2025-66471
License: mit
/nDon't know how to fix this? Don't know why this was reported?
Get Assistance from Veracode
urllib3 - CVE-2025-66471
urllib3 is vulnerable to Denial-Of-Service (DoS). The vulnerability is due to improper handling of highly compressed data in the streaming API, where decompression continues until the requested chunk size is satisfied, allowing a small, highly compressed response to be fully decompressed in a single operation, leading to excessive CPU usage and large memory allocation.
CVSS Score: 7.8 - High
CVE Link: http://nvd.nist.gov/vuln/detail/CVE-2025-66471
License: mit
/nDon't know how to fix this? Don't know why this was reported?
Get Assistance from Veracode