Vulnerabilities in elixir-tesla
5 resultsCVE-2026-48595HIGHAuthorization header leaks to third-party origin on cross-origin redirect in Tesla.Middleware.FollowRedirectsEPSS 0.4%CVE-2026-48594HIGHDecompression bomb in Tesla.Middleware.DecompressResponse and Tesla.Middleware.CompressionEPSS 0.3%CVE-2026-48597HIGHAtom table exhaustion via untrusted URL scheme in Tesla.Adapter.MintEPSS 0.3%CVE-2026-48596LOWCRLF injection in Tesla.Multipart.add_content_type_param/2 allows HTTP header injectionEPSS 0.2%CVE-2026-48598LOWCRLF injection in Tesla.Multipart disposition parameters allows multipart part header injectionEPSS 0.1%