Kyoshidajpo

**Name of the Vulnerable Software and Affected Versions** urllib3 versions prior to 1.24.2 **Description** The issue is related to the use of open redirects in the Urllib3 HTTP library for Python. Exploitation of this issue can allow a remote attacker to access and compromise confidential data. Specifically, when following a cross-origin redirect, the library does not remove the authorization HTTP header, potentially exposing credentials to unintended hosts or transmitting them in cleartext. **Recommendations** For versions prior to 1.24.2, update to version 1.24.2 or later to resolve the issue. As a temporary workaround, consider disabling the use of cross-origin redirects until a patch is available. Restrict access to sensitive data and credentials to minimize the risk of exploitation.