Lucene search

CVE-2018-1060

🗓️ 18 Jun 2018 14:00:29Reported by redhatType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 471 Views

python versions vulnerable to pop3lib's apop() method exploi

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 188
RedhatCVE	CVE-2018-1060	1 Apr 202014:07	–	redhatcve
NVD	CVE-2018-1060	18 Jun 201814:29	–	nvd
Tenable Nessus	Fedora 27 : python-pip / python3 / python3-docs (2018-a042f795b2)	10 Apr 201800:00	–	nessus
Tenable Nessus	Fedora 26 : python-pip / python3 / python3-docs (2018-aa8de9d66a)	10 Apr 201800:00	–	nessus
Tenable Nessus	Fedora 28 : python3 (2018-7eae87ec86)	3 Jan 201900:00	–	nessus
Tenable Nessus	Fedora 28 : python35 (2018-99ff4c8f80)	3 Jan 201900:00	–	nessus
Tenable Nessus	Fedora 27 : python35 (2018-04d49a1804)	16 Aug 201800:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2018-1060	4 Mar 202500:00	–	nessus
Tenable Nessus	Fedora 28 : python34 (2018-c3a2174314)	3 Jan 201900:00	–	nessus
Tenable Nessus	Fedora 27 : python34 (2018-875afebb87)	16 Aug 201800:00	–	nessus

Nvd

Vulners

Node

python pythonRange2.7.0–2.7.15

python pythonRange3.0.0–3.4.9

python pythonRange3.5.0–3.5.6

python pythonRange3.6.0–3.6.5

Node

fedoraproject fedoraMatch28

fedoraproject fedoraMatch29

fedoraproject fedoraMatch30

Node

canonical ubuntu_linuxMatch12.04esm

canonical ubuntu_linuxMatch14.04lts

canonical ubuntu_linuxMatch16.04lts

canonical ubuntu_linuxMatch18.04lts

Node

redhat ansible_towerMatch3.3

redhat enterprise_linux_desktopMatch7.0

redhat enterprise_linux_serverMatch7.0

redhat enterprise_linux_workstationMatch7.0

Node

debian debian_linuxMatch8.0

debian debian_linuxMatch9.0

[
  {
    "product": "python",
    "vendor": "[UNKNOWN]",
    "versions": [
      {
        "status": "affected",
        "version": "python 2.7.15"
      },
      {
        "status": "affected",
        "version": "python 3.4.9"
      },
      {
        "status": "affected",
        "version": "python 3.5.6"
      },
      {
        "status": "affected",
        "version": "python 3.7.0"
      }
    ]
  }
]

Source	Link
access	www.access.redhat.com/errata/RHSA-2019:3725
usn	www.usn.ubuntu.com/3817-2/
support	www.support.hpe.com/hpsc/doc/public/display
access	www.access.redhat.com/errata/RHSA-2018:3505
lists	www.lists.debian.org/debian-lts-announce/2018/09/msg00030.html
docs	www.docs.python.org/3.5/whatsnew/changelog.html
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AEZ5IQT7OF7Q2NCGIVABOWYGKO7YU3NJ/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/46PVWY5LFP4BRPG3BVQ5QEEFYBVEXHCK/
bugs	www.bugs.python.org/issue32981
debian	www.debian.org/security/2018/dsa-4307

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

18 Jun 2018 14:29Current

7.4High risk

Vulners AI Score7.4

CVSS25

CVSS34.3 - 7.5

EPSS0.02447

CWE-20