PyPI: indico
CVE-2023-46136
Safety vulnerability ID: SFTY-20231025-88546
Safety legacy ID: pyup.io-64474
Indico 3.2.9 updates its Werkzeug dependency, upgrading from version 2.3.4 to 2.3.8 in response to the security issue CVE-2023-46136. https://github.com/indico/indico/commit/26e6043be2e446327b96d53e2e11313a6e7ab6a2
Overview
Indico 3.2.9 updates its Werkzeug dependency, upgrading from version 2.3.4 to 2.3.8 in response to the security issue CVE-2023-46136. https://github.com/indico/indico/commit/26e6043be2e446327b96d53e2e11313a6e7ab6a2
Advisory
Indico 3.2.9 updates its Werkzeug dependency, upgrading from version 2.3.4 to 2.3.8 in response to the security issue CVE-2023-46136. https://github.com/indico/indico/commit/26e6043be2e446327b96d53e2e11313a6e7ab6a2
How to Fix
Mitigation and Workarounds
---
Vulnerable Functions
Functions linked to known vulnerabilities.
Verified by Safety
Our Cybersecurity Intelligence Team reviewed this vulnerability. We combine public data with our own research to find issues not yet reported to public sources.
Learn more