CVE-2026-44432High· 7.5▾ Twilighturllib3 is an HTTP client library for Python. From 2.6.0 to before 2.7.0, urllib3 could decompress the whole response instead of the requested portion (1) during the second HTTPResponse.read(amt=N) call when the response was decompressed…
▾ Twilight zone — High severity, or a signal on a lesser flaw
impact 41.3 · likelihood 0.1 · exploitation 0
The latest CVEs are free to read. CVE-2026-44432 is outside the free window — sign in (free) to view the full technical detail, affected versions, references, and raw markdown.