Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CGA-4F97-M8HR-66CR
HistoryJun 06, 2024 - 12:22 p.m.

CGA-4f97-m8hr-66cr

2024-06-0612:22:34
Google
osv.dev
5
bulletin
software
security

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.2

Confidence

High

JSON

Bulletin has no description

Related

ibm 4
ubuntucve 1
openvas 2
cve 1
osv 8
cbl_mariner 1
redhatcve 1
nvd 1
nessus 7
prion 1
debiancve 1
cvelist 1
oracle 1
ibm
ibm
Security Bulletin: WML CE: pip (all versions) because it installs the version with the highest version number, even if the user had intended to obtain a private package from a private index
2020-07-17 16:48:37
Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Python
2020-06-19 05:08:48
Security Bulletin: Pip as used by IBM QRadar Advisor With Watson is vulnerable to multiple vulnerabilities (CVE-2019-20916, CVE-2021-3572, CVE-2018-20225)
2022-06-15 19:07:37
ubuntucve
ubuntucve
CVE-2018-20225
2020-05-08 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2021-1728)
2021-04-13 00:00:00
Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2021-1745)
2021-04-13 00:00:00
cve
cve
CVE-2018-20225
2020-05-08 18:15:10
osv
osv
CGA-jm85-8753-pjxh
2024-06-06 12:28:14
CGA-m8v2-c2c5-24w8
2024-09-05 18:19:54
CGA-vfpc-g4p3-j9h4
2024-06-06 12:29:32
cbl_mariner
cbl_mariner
CVE-2018-20225 affecting package python-pip 19.2-2
2024-09-21 03:20:37
redhatcve
redhatcve
CVE-2018-20225
2020-05-14 12:40:05
nvd
nvd
CVE-2018-20225
2020-05-08 18:15:10
nessus
nessus
EulerOS Virtualization 2.9.1 : python-pip (EulerOS-SA-2021-1728)
2021-04-15 00:00:00
RHEL 8 : python-pip (Unpatched Vulnerability)
2024-06-03 00:00:00
EulerOS Virtualization 2.9.0 : python-pip (EulerOS-SA-2021-1745)
2021-04-15 00:00:00
prion
prion
Denial of service
2020-05-08 18:15:00
debiancve
debiancve
CVE-2018-20225
2020-05-08 18:15:10
cvelist
cvelist
CVE-2018-20225
2020-05-08 17:29:12
oracle
oracle
Oracle Critical Patch Update Advisory - April 2023
2023-04-18 00:00:00

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.2

Confidence

High

JSON
Related for OSV:CGA-4F97-M8HR-66CR
ibm4ubuntucve1openvas2cve1osv8cbl_mariner1redhatcve1nvd1nessus7prion1debiancve1cvelist1oracle1