AZL-10618 CVE-2021-28861 affecting package python3 for versions less than 3.9.19-1

🗓️ 23 Aug 2022 01:15:07Reported by GoogleType

osv

osv🔗 osv.dev👁 2 Views

Open redirection in Python http.server for python3 versions below 3.9.19-1 may disclose information.

Reporter	Title	Published	Views	Family All 280
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM includes components with known vulnerabilities	6 Jul 202318:48	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak.	26 Apr 202319:38	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak.	12 Apr 202320:23	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Security Vulnerabilities have been fixed in IBM Security Verify Access	11 May 202316:18	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to phishing attacks in Python (CVE-2021-28861)	3 May 202314:08	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to multiple vulnerabilities in Python	11 Jul 202313:33	–	ibm
Tenable Nessus	Amazon Linux 2 : python3 (ALAS-2022-1896)	7 Dec 202200:00	–	nessus
Tenable Nessus	Amazon Linux 2 : python38 (ALASPYTHON3.8-2024-016)	13 Nov 202400:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0053: python3 (ALINUX3-SA-2023:0053)	14 May 202500:00	–	nessus
Tenable Nessus	AlmaLinux 9 : python3.9 (ALSA-2022:8353)	18 Nov 202200:00	–	nessus

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2021-28861

21 Apr 2026 04:21Current

6.7Medium risk

Vulners AI Score6.7

CVSS 3.17.4

EPSS0.01395

open redirection python server python versions information disclosure uri path