pkg:Debian/flask

All known vulnerabilities

• HIGH7.5CVE-2023-30861Flask vulnerable to possible disclosure of permanent session cookie due to missing Vary: Cookie header
  from 0, < 1.0.2-3+deb10u1
• HIGH7.5CVE-2023-30861Flask vulnerable to possible disclosure of permanent session cookie due to missing Vary: Cookie header
  from 0, < 1.1.2-2+deb11u1
• HIGH7.5CVE-2023-30861Flask vulnerable to possible disclosure of permanent session cookie due to missing Vary: Cookie header
  from 0, < 1.1.2-2+deb11u1
• HIGH7.5Pallets Project Flask is vulnerable to Denial of Service via Unexpected memory usage
  from 0, < 1.0.2-1
• HIGH7.5Flask is vulnerable to Denial of Service via incorrect encoding of JSON data
  from 0, < 1.0.2-1
• HIGH7.5Flask is vulnerable to Denial of Service via incorrect encoding of JSON data
  from 0, < 0.10.1-2+deb8u1
• MEDIUM4.3Flask session does not add `Vary: Cookie` header when accessed in some ways
  from 0
• —Flask uses fallback key instead of current signing key
  from 0, < 3.1.1-1