Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2024-47532
HistorySep 30, 2024 - 4:15 p.m.

CVE-2024-47532

2024-09-3016:15:09
CWE-200
[email protected]
web.nvd.nist.gov
6
restrictedpython
execution environment
cve-2024-47532
information security
vulnerability fix

EPSS

0

Percentile

9.6%

JSON

RestrictedPython is a restricted execution environment for Python to run untrusted code. A user can gain access to protected (and potentially sensible) information indirectly via AttributeError.obj and the string module. The problem will be fixed in version 7.3. As a workaround, If the application does not require access to the module string, it can remove it from RestrictedPython.Utilities.utility_builtins or otherwise do not make it available in the restricted execution environment.

Related

cvelist 1
osv 2
vulnrichment 1
cve 1
github 1
debiancve 1
cvelist
cvelist
CVE-2024-47532 RestrictedPython information leakage via `AttributeError.obj` and the `string` module
2024-09-30 15:29:57
osv
osv
CVE-2024-47532
2024-09-30 16:15:09
RestrictedPython information leakage via `AttributeError.obj` and the `string` module
2024-09-30 17:14:00
vulnrichment
vulnrichment
CVE-2024-47532 RestrictedPython information leakage via `AttributeError.obj` and the `string` module
2024-09-30 15:29:57
cve
cve
CVE-2024-47532
2024-09-30 16:15:09
github
github
RestrictedPython information leakage via `AttributeError.obj` and the `string` module
2024-09-30 17:14:00
debiancve
debiancve
CVE-2024-47532
2024-09-30 16:15:09

EPSS

0

Percentile

9.6%

JSON
Related for NVD:CVE-2024-47532
cvelist1osv2vulnrichment1cve1github1debiancve1