{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-08T05:49:10.612","vulnerabilities":[{"cve":{"id":"CVE-2024-47081","sourceIdentifier":"security-advisories@github.com","published":"2025-06-09T18:15:24.983","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Requests is a HTTP library. Due to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third parties for specific maliciously-crafted URLs. Users should upgrade to version 2.32.4 to receive a fix. For older versions of Requests, use of the .netrc file can be disabled with `trust_env=False` on one's Requests Session."},{"lang":"es","value":"Requests es una librería HTTP. Debido a un problema de análisis de URL, las versiones de Requests anteriores a la 2.32.4 pueden filtrar credenciales .netrc a terceros para URL específicas manipuladas con fines maliciosos. Los usuarios deben actualizar a la versión 2.32.4 para obtener una solución. En versiones anteriores de Requests, el uso del archivo .netrc se puede desactivar con `trust_env=False` en la sesión de Requests."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-522"}]}],"references":[{"url":"https://github.com/psf/requests/commit/96ba401c1296ab1dda74a2365ef36d88f7d144ef","source":"security-advisories@github.com"},{"url":"https://github.com/psf/requests/pull/6965","source":"security-advisories@github.com"},{"url":"https://github.com/psf/requests/security/advisories/GHSA-9hjg-9r4m-mvj7","source":"security-advisories@github.com"},{"url":"https://requests.readthedocs.io/en/latest/api/#requests.Session.trust_env","source":"security-advisories@github.com"},{"url":"https://seclists.org/fulldisclosure/2025/Jun/2","source":"security-advisories@github.com"},{"url":"http://seclists.org/fulldisclosure/2025/Jun/2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2025/06/03/11","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2025/06/03/9","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2025/06/04/1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2025/06/04/6","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}