Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2011-1521
HistoryMay 24, 2011 - 11:55 p.m.

CVE-2011-1521

2011-05-2423:55:02
CWE-399
[email protected]
web.nvd.nist.gov
149
python
urllib
urllib2
vulnerability
cve-2011-1521
nvd
information security

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

AI Score

7.3

Confidence

High

EPSS

0.136

Percentile

95.6%

JSON

The urllib and urllib2 modules in Python 2.x before 2.7.2 and 3.x before 3.2.1 process Location headers that specify redirection to file: URLs, which makes it easier for remote attackers to obtain sensitive information or cause a denial of service (resource consumption) via a crafted URL, as demonstrated by the file:///etc/passwd and file:///dev/zero URLs.

Affected configurations

NVD
Node
pythonpythonMatch2.0
OR
pythonpythonMatch2.0.1
OR
pythonpythonMatch2.1
OR
pythonpythonMatch2.1.1
OR
pythonpythonMatch2.1.2
OR
pythonpythonMatch2.1.3
OR
pythonpythonMatch2.2
OR
pythonpythonMatch2.2.1
OR
pythonpythonMatch2.2.2
OR
pythonpythonMatch2.2.3
OR
pythonpythonMatch2.3.1
OR
pythonpythonMatch2.3.2
OR
pythonpythonMatch2.3.3
OR
pythonpythonMatch2.3.4
OR
pythonpythonMatch2.3.5
OR
pythonpythonMatch2.3.7
OR
pythonpythonMatch2.4.1
OR
pythonpythonMatch2.4.2
OR
pythonpythonMatch2.4.3
OR
pythonpythonMatch2.4.4
OR
pythonpythonMatch2.4.6
OR
pythonpythonMatch2.5.1
OR
pythonpythonMatch2.5.2
OR
pythonpythonMatch2.5.3
OR
pythonpythonMatch2.5.4
OR
pythonpythonMatch2.6.1
OR
pythonpythonMatch2.6.4
OR
pythonpythonMatch2.6.5
OR
pythonpythonMatch2.6.6
OR
pythonpythonMatch2.6.7
OR
pythonpythonMatch2.7.1
Node
pythonpythonMatch3.0
OR
pythonpythonMatch3.0.1
OR
pythonpythonMatch3.1
OR
pythonpythonMatch3.1.1
OR
pythonpythonMatch3.1.2
OR
pythonpythonMatch3.1.3
OR
pythonpythonMatch3.2
OR
pythonpythonMatch3.2alpha
VendorProductVersionCPE
pythonpython2.3.3cpe:/a:python:python:2.3.3:::
pythonpython2.3.7cpe:/a:python:python:2.3.7:::
pythonpython2.3.1cpe:/a:python:python:2.3.1:::
pythonpython2.0.1cpe:/a:python:python:2.0.1:::
pythonpython2.4.4cpe:/a:python:python:2.4.4:::
pythonpython2.1.1cpe:/a:python:python:2.1.1:::
pythonpython2.5.2cpe:/a:python:python:2.5.2:::
pythonpython2.4.2cpe:/a:python:python:2.4.2:::
pythonpython2.1.2cpe:/a:python:python:2.1.2:::
pythonpython2.2cpe:/a:python:python:2.2:::
Rows per page:
1-10 of 311

References

Related

ubuntucve 2
nessus 30
nvd 2
openvas 38
prion 2
cvelist 2
debiancve 2
veracode 1
osv 3
cve 1
ubuntu 5
securityvulns 4
gitlab 1
github 1
redhat 3
centos 2
oraclelinux 3
f5 1
debian 1
ibm 1
vmware 2
ubuntucve
ubuntucve
CVE-2011-1521
2011-05-24 00:00:00
CVE-2011-4137
2011-10-19 00:00:00
nessus
nessus
openSUSE Security Update : libpython2_6-1_0 (openSUSE-SU-2011:0484-1)
2014-06-13 00:00:00
SuSE 10 Security Update : python (ZYPP Patch Number 7506)
2011-12-13 00:00:00
SuSE 10 Security Update : python (ZYPP Patch Number 7509)
2011-05-25 00:00:00
nvd
nvd
CVE-2011-1521
2011-05-24 23:55:02
CVE-2011-4137
2011-10-19 10:55:04
openvas
openvas
Python Multiple Vulnerabilities (May 2011) - Linux
2021-11-01 00:00:00
Python Multiple Vulnerabilities - Windows
2011-06-07 00:00:00
Python Multiple Vulnerabilities (Windows)
2011-06-07 00:00:00
prion
prion
Code injection
2011-05-24 23:55:00
Design/Logic Flaw
2011-10-19 10:55:00
cvelist
cvelist
CVE-2011-1521
2011-05-24 23:00:00
CVE-2011-4137
2011-10-19 10:00:00
debiancve
debiancve
CVE-2011-1521
2011-05-24 23:55:02
CVE-2011-4137
2011-10-19 10:55:04
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:55:29
osv
osv
Moderate severity vulnerability that affects django
2018-07-23 19:51:35
PYSEC-2011-2
2011-10-19 10:55:00
python2.6 - security update
2014-07-31 00:00:00
cve
cve
CVE-2011-4137
2011-10-19 10:55:04
ubuntu
ubuntu
Python 3 vulnerabilities
2011-12-19 00:00:00
Python 2.7 vulnerabilities
2012-10-02 00:00:00
Python 2.6 vulnerabilities
2012-10-04 00:00:00
securityvulns
securityvulns
python security vulnerabilities
2011-05-25 00:00:00
[ MDVSA-2011:096 ] python
2011-05-25 00:00:00
Apple OS X multiple security vulnerabilities
2011-10-24 00:00:00
gitlab
gitlab
Moderate severity vulnerability that affects django
2018-07-23 00:00:00
github
github
Denial of service in django
2018-07-23 19:51:35
redhat
redhat
(RHSA-2011:0554) Moderate: python security, bug fix, and enhancement update
2011-05-19 00:00:00
(RHSA-2011:0492) Moderate: python security update
2011-05-05 00:00:00
(RHSA-2011:0491) Moderate: python security update
2011-05-05 00:00:00
centos
centos
python, tkinter security update
2011-05-05 20:50:48
python, tkinter security update
2011-05-05 21:37:02
oraclelinux
oraclelinux
python security update
2011-05-05 00:00:00
python security, bug fix, and enhancement update
2011-05-28 00:00:00
python security update
2011-05-05 00:00:00
f5
f5
K75910138 : Python vulnerabilities CVE-2011-1521, CVE-2011-4940, CVE-2011-4944, CVE-2012-0845, and CVE-2012-1150
2018-09-11 00:00:00
debian
debian
[DLA 25-1] python2.6 security update
2014-07-31 21:07:32
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in python 2.6.4 used in OS Image for AIX shipped with IBM Cloud Pak System
2020-05-06 11:57:04
vmware
vmware
VMware ESXi and ESX updates to third party library and ESX Service Console
2012-01-30 00:00:00
VMware ESXi and ESX updates to third party library and ESX Service Console
2012-01-30 00:00:00

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

AI Score

7.3

Confidence

High

EPSS

0.136

Percentile

95.6%

JSON
Related for CVE-2011-1521
ubuntucve2nessus30nvd2openvas38prion2cvelist2debiancve2veracode1osv3cve1ubuntu5securityvulns4gitlab1github1redhat3centos2oraclelinux3f51debian1ibm1vmware2