Lucene search

CVE-2022-0391

🗓️ 09 Feb 2022 23:16:15Reported by redhatType

cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 750 Views

Flaw in Python urllib.parse module allows injection attacks via crafted URL inpu

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 188
OSV	PSF-2022-8 urllib.parse should sanitize urls containing ASCII newline and tabs.	9 Feb 202200:00	–	osv
OSV	BIT-PYTHON-MIN-2022-0391	16 Jan 202507:22	–	osv
OSV	CVE-2022-0391	9 Feb 202223:15	–	osv
OSV	UBUNTU-CVE-2022-0391	9 Feb 202223:15	–	osv
OSV	OPENSUSE-SU-2024:11839-1 python-2.7.18-16.1 on GA media	15 Jun 202400:00	–	osv
OSV	BIT-PYTHON-2022-0391	6 Mar 202411:05	–	osv
OSV	USN-5342-2 python2.7 vulnerabilities	24 Aug 202208:56	–	osv
OSV	RHSA-2022:6457 Red Hat Security Advisory: python3 security update	13 Sep 202417:40	–	osv
OSV	SUSE-SU-2022:1140-1 Security update for python	8 Apr 202214:30	–	osv
OSV	SUSE-SU-2022:0882-1 Security update for python3	16 Mar 202213:44	–	osv

Nvd

Vulners

Node

python pythonRange<3.6.14

python pythonRange3.7.0–3.7.11

python pythonRange3.8.0–3.8.11

python pythonRange3.9.0–3.9.5

python pythonMatch3.10.0alpha1

python pythonMatch3.10.0alpha2

python pythonMatch3.10.0alpha3

python pythonMatch3.10.0alpha4

python pythonMatch3.10.0alpha5

python pythonMatch3.10.0alpha6

Node

netapp active_iq_unified_managerMatch-vsphere

netapp hciMatch-

netapp management_services_for_element_softwareMatch-

netapp ontap_select_deploy_administration_utilityMatch-

netapp solidfire,_enterprise_sds_&_hci_storage_nodeMatch-

netapp hci_compute_nodeMatch-

Node

fedoraproject fedoraMatch34

fedoraproject fedoraMatch35

Node

oracle http_serverMatch12.2.1.3.0

oracle http_serverMatch12.2.1.4.0

oracle zfs_storage_appliance_kitMatch8.8

[
  {
    "vendor": "n/a",
    "product": "python",
    "versions": [
      {
        "version": "python 3.10.0b1, python 3.9.5, python 3.8.11, python 3.7.11, python 3.6.14",
        "status": "affected"
      }
    ]
  }
]

Source	Link
oracle	www.oracle.com/security-alerts/cpuapr2022.html
lists	www.lists.debian.org/debian-lts-announce/2023/09/msg00022.html
bugs	www.bugs.python.org/issue43882
security	www.security.gentoo.org/glsa/202305-02
security	www.security.netapp.com/advisory/ntap-20220225-0009/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CSD2YBXP3ZF44E44QMIIAR5VTO35KTRB/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UDBDBAU6HUPZHISBOARTXZ5GKHF2VH5U/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 Feb 2022 23:15Current

7.4High risk

Vulners AI Score7.4

CVSS25

CVSS37.5

EPSS0.00672

CWE-74