Package impact
Hex / tesla
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-48598 | unknown | — | — | 2d ago | CRLF injection in Tesla.Multipart disposition parameters allows multipart part header injection | |||
| CVE-2026-48597 | unknown | — | — | 2d ago | Atom table exhaustion via untrusted URL scheme in Tesla.Adapter.Mint | |||
| CVE-2026-48596 | unknown | — | — | 2d ago | CRLF injection in Tesla.Multipart.add_content_type_param/2 allows HTTP header injection | |||
| CVE-2026-48595 | unknown | — | — | 2d ago | Authorization header leaks to third-party origin on cross-origin redirect in Tesla.Middleware.FollowRedirects | |||
| CVE-2026-48594 | unknown | — | — | 2d ago | Decompression bomb in Tesla.Middleware.DecompressResponse and Tesla.Middleware.Compression |