Fix CVE-2023-32681 in requests HIGH
Fix CVE-2023-32681 (proxy credential leak) in requests for PyPI. Paste your requirements.txt into PackageFix and get a patched version back — no CLI, no signup.
⚠ Vulnerability
CVE-2023-32681 — proxy credential leak in requests. Update to 2.31.0 or later.
Vulnerable Version — requirements.txt
requests==2.25.1
Fixed Version — requirements.txt
requests==2.31.0
✓ Fix
Update to 2.31.0 and run pip install -r requirements.txt to apply the fix.
Scan your dependencies now — paste your manifest, get a fixed version back in seconds.
Open PackageFix →No signup · No CLI · No GitHub connection · Runs 100% in your browser
Frequently Asked Questions
What is CVE-2023-32681?
CVE-2023-32681 is a vulnerability in requests that allows proxy credential leak. Update to version 2.31.0 or later to fix it.
Is CVE-2023-32681 on the CISA KEV catalog?
Check the live CISA KEV catalog at packagefix.dev — the catalog updates daily and PackageFix always reflects the current status.
How do I fix CVE-2023-32681 in requests?
Update requests to version 2.31.0 or later in your requirements.txt. Run pip install -r requirements.txt after updating.
Does CVE-2023-32681 affect all versions of requests?
Check the OSV advisory for the exact affected version range. PackageFix shows the minimum safe version for your installed version.