The vulnerability of the cpython module in the Python programming language allows a perpetrator to execute arbitrary code.

🗓️ 27 Mar 2025 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

CPython vulnerability in Python allows arbitrary code execution due to sanitization at control level.

Reporter	Title	Published	Views	Family All 416
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Rapid Infrastructure Automation	28 May 202514:39	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in IBM API Connect	15 Mar 202500:18	–	ibm
IBM Security Bulletins	Security Bulletin: DataStage on Cloud Pak for Data is vulnerable to regular expression DoS and command injection due to the python package (CVE-2024-6232, CVE-2024-9287)	23 Jul 202516:09	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Maximo Application Suite - Iot Component uses axios 1.7.9 and Python-3.8.17 which is vulnerable to CVE-2023-40217, CVE-2024-6232, CVE-2022-40897, CVE-2024-6345, CVE-2023-5752 and CVE-2025-27152	25 Jun 202508:00	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in IBM CloudPak for AIOps	25 Jun 202513:52	–	ibm
IBM Security Bulletins	Security Bulletin: DataStage on Cloud Pak for Data is vulnerable to several issues due to the Python package (CVE-2024-6232, CVE-2024-7592, CVE-2024-7592)	23 Jul 202513:31	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Maximo Application Suite - Iot Component uses axios 1.7.9 and Python-3.8.17 which is vulnerable to CVE-2023-40217, CVE-2024-6232, CVE-2022-40897, CVE-2024-6345, CVE-2023-5752 and CVE-2025-27152	25 Jun 202507:57	–	ibm
IBM Security Bulletins	Security Bulletin: IBM InfoSphere Information Server is affected by multiple vulnerabilities in Python	28 Mar 202522:35	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities in Python affect IBM Robotic Process Automation	21 Jan 202520:59	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities have been found in IBM CICS TX Advanced.	28 Apr 202513:30	–	ibm

Vulners

Node

novell suse_linux_enterprise_microMatch5.1

novell suse_linux_enterprise_microMatch5.2

novell suse_manager_retail_branch_serverMatch4.3

novell suse_manager_proxyMatch4.3

novell suse_manager_serverMatch4.3

novell suse_linux_enterprise_microMatch5.3

novell suse_linux_enterprise_microMatch5.4

novell suse_linux_enterprise_microMatch5.5

python pythonRange<3.9.21

python pythonRange3.10.0–3.10.16

python pythonRange3.11.0–3.11.11

python pythonRange3.12.0–3.12.8

python pythonRange3.13.0–3.13.1

novell opensuse_leapMatch15.5

red_hat red_hat_enterprise_linuxMatch8

red_hat red_hat_enterprise_linuxMatch9

novell opensuse_leap_microMatch5.5

novell suse_liberty_linuxMatch9

novell suse_liberty_linuxMatch8

novell opensuse_leapMatch15.6

Source	Link
redos	www.redos.red-soft.ru/support/secure/
github	www.github.com/python/cpython/commit/633555735a023d3e4d92ba31da35b1205f9ecbd7
github	www.github.com/python/cpython/commit/8450b2482586857d689b6658f08de9c8179af7db
github	www.github.com/python/cpython/commit/9286ab3a107ea41bd3f3c3682ce2512692bdded8
github	www.github.com/python/cpython/commit/ae961ae94bf19c8f8c7fbea3d1c25cc55ce8ae97
github	www.github.com/python/cpython/commit/d48cc82ed25e26b02eb97c6263d95dcaa1e9111b
github	www.github.com/python/cpython/commit/e52095a0c1005a87eed2276af7a1f2f66e2b6483
security-tracker	www.security-tracker.debian.org/tracker/CVE-2024-9287
access	www.access.redhat.com/security/cve/cve-2024-9287
suse	www.suse.com/security/cve/CVE-2024-9287.html

04 Mar 2026 00:00Current

7High risk

Vulners AI Score7

CVSS 26.8

CVSS 37.8

EPSS0.00061