CVE-2026-48595 - Authorization header leaks to third-party origin on cross-origin redirect in Tesla.Middleware.FollowRedirects
CVE ID :CVE-2026-48595 Published : June 2, 2026, 8:16 p.m. | 57 minutes ago Description :Improper Handling of Case Sensitivity vulnerability in elixir-tesla tesla allows credential leakage to a third-party origin on cross-origin redirects. Tesla.Middleware.FollowRedirects strips...