/CVE-2024-6866

HIGHCVE-2024-6866PyPICVSS 7.5

flask-cors

Published

Description

Flask-CORS vulnerable to Improper Handling of Case Sensitivity

Affected Versions

>=0

FIXED VERSIONS6.0.0

References

ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2024-6866 WEBhttps://github.com/corydolphin/flask-cors/commit/eb39516a3c96b90d0ae5f51293972395ec3ef358 PACKAGEhttps://github.com/corydolphin/flask-cors WEBhttps://github.com/corydolphin/flask-cors/blob/4.0.1/flask_cors/extension.py#L195 WEBhttps://huntr.com/bounties/808c11af-faee-43a8-824b-b5ab4f62b9e6 WEBhttps://lists.debian.org/debian-lts-announce/2025/05/msg00049.html ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2024-6839 WEBhttps://github.com/corydolphin/flask-cors/commit/e970988bea563e05e8b8f53fa7bcc134b5bf5c5f WEBhttps://github.com/corydolphin/flask-cors/blob/4.0.1/flask_cors/core.py#L73 WEBhttps://huntr.com/bounties/403eb1fc-86f4-4820-8eba-0f3dfae9f2b4 ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2024-6844 WEBhttps://github.com/corydolphin/flask-cors/commit/35d875319621bd129a38b2b823abf4a2f6cda536 WEBhttps://github.com/corydolphin/flask-cors/blob/main/flask_cors/extension.py#L193 WEBhttps://huntr.com/bounties/731a6cd4-d05f-4fe6-8f5b-fe088d7b34e0

Using flask-cors?

Scan your dependencies and detect this automatically on every PR.

Create free account