The Pallets Project Flask before 1.0 is affected by: unexpected memory usage. The impact is: denial of service. The attack vector is: crafted encoded JSON data. The fixed version is: 1. NOTE: this may overlap CVE-2018-1000656.

CPENameOperatorVersion
flaskeq0.5
flaskeq0.2
flaskeq0.1
flaskeq0.4
flaskeq0.12.2
flaskeq0.8.1
flaskeq0.11.1
flaskeq0.6
flaskeq0.7
flaskeq0.10

Name	Operator	Version
flask	eq	0.5
flask	eq	0.2
flask	eq	0.1
flask	eq	0.4
flask	eq	0.12.2
flask	eq	0.8.1
flask	eq	0.11.1
flask	eq	0.6
flask	eq	0.7
flask	eq	0.10

Rows per page:

1-10 of 181

References

www.palletsprojects.com/blog/flask-1-0-released/

cve 2

debiancve 2

nvd 2

redhatcve 2

ubuntucve 2

osv 6

nessus 7

prion 2

github 2

f5 1

kitploit 1

cvelist 2

veracode 2

debian 1

gitlab 2

openvas 4

redhat 1

suse 1

ubuntu 1

ibm 2

oracle 1

cve

CVE-2019-1010083

2019-07-17 14:15:11

CVE-2018-1000656

2018-08-20 19:31:45

debiancve

CVE-2018-1000656

2018-08-20 19:31:45

CVE-2019-1010083

2019-07-17 14:15:11

nvd

CVE-2018-1000656

2018-08-20 19:31:45

CVE-2019-1010083

2019-07-17 14:15:11

redhatcve

CVE-2019-1010083

2020-10-13 20:19:18

CVE-2018-1000656

2018-08-28 14:49:06

ubuntucve

CVE-2019-1010083

2019-07-17 00:00:00

CVE-2018-1000656

2018-08-20 00:00:00

osv

PYSEC-2018-66

2018-08-20 19:31:00

PYSEC-2019-179

2019-07-17 14:15:00

Pallets Project Flask is vulnerable to Denial of Service via Unexpected memory usage

2019-07-19 16:12:46

nessus

SUSE SLES12 Security Update : python-Flask (SUSE-SU-2023:1928-1)

2023-04-21 00:00:00

Flask < 0.12.3 Denial of Service Vulnerability

2018-12-19 00:00:00

RHEL 7 : python-flask (RHSA-2020:0870)

2020-03-18 00:00:00

prion

Input validation

2018-08-20 19:31:00

Code injection

2019-07-17 14:15:00

github

Pallets Project Flask is vulnerable to Denial of Service via Unexpected memory usage

2019-07-19 16:12:46

Flask is vulnerable to Denial of Service via incorrect encoding of JSON data

2018-08-23 19:10:40

K63597327 : Python Flask vulnerability CVE-2018-1000656

2021-06-22 00:00:00

kitploit

Pip-Audit - Audits Python Environments And Dependency Trees For Known Vulnerabilities

2022-01-19 11:30:00

cvelist

CVE-2019-1010083

2019-07-17 13:59:09

CVE-2018-1000656

2018-08-20 19:00:00

veracode

Denial Of Service (DoS)

2019-07-18 02:30:13

Denial Of Service (DoS)

2018-08-21 07:03:15

debian

[SECURITY] [DLA 1892-1] flask security update

2019-08-20 10:03:52

gitlab

Denial of service

2019-07-17 00:00:00

Improper Input Validation

2018-08-20 00:00:00

openvas

openSUSE: Security Advisory for python-Flask (openSUSE-SU-2019:1112-1)

2019-04-03 00:00:00

Debian: Security Advisory (DLA-1892-1)

2019-08-22 00:00:00

Ubuntu: Security Advisory (USN-4378-1)

2020-06-02 00:00:00

redhat

(RHSA-2020:0870) Low: python-flask security update

2020-03-17 16:54:58

suse

Security update for python-Flask (low)

2019-04-02 00:00:00

ubuntu

Flask vulnerability

2020-06-01 00:00:00

ibm

Security Bulletin: IBM QRadar Assistant App for IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

2024-04-29 16:48:58

Security Bulletin: IBM Cognos Analytics is affected but not classified as vulnerable to vulnerabilities in multiple Open Source Software (OSS) components

2024-02-05 19:00:03

oracle

Oracle Critical Patch Update Advisory - April 2023

2023-04-18 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.004 Low

EPSS

Percentile

72.7%

JSON

Related for OSV:CVE-2019-1010083