USN-7599-1

Advisory lineage Upstream: 4 Downstream: 0

Upstream

CVE-2025-50181 CVE-2025-50182 UBUNTU-CVE-2025-50181 UBUNTU-CVE-2025-50182

Published: 25 Jun 2025, 18:48

Last modified:20 May 2026, 16:03

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

25 Jun 2025, 18:48

Published

Vulnerability first disclosed

20 May 2026, 16:03

Last Modified

Vulnerability information updated

Description

python-urllib3 vulnerabilities Jacob Sandum discovered that urllib3 handled redirects even when they were explicitly disabled while using the PoolManager. An attacker could possibly use this issue to obtain sensitive information. (CVE-2025-50181) Illia Volochii discovered that urllib3 incorrectly handled retry and redirect parameters when using Node.js. An attacker could possibly use this issue to obtain sensitive information. This issue only affected Ubuntu 25.04. (CVE-2025-50182)

Affected Systems

ubuntu•python-urllib3
< 1.13.1-2ubuntu0.16.04.4+esm3 | < 1.22-1ubuntu0.18.04.2+esm3 | < 1.25.8-2ubuntu0.4+esm1 | < 1.26.5-1~exp1ubuntu0.3 | < 2.0.7-1ubuntu0.2

USN-7599-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (3)