Lucene search
GoogleOSV:SUSE-SU-2024:2272-1HistoryJul 02, 2024 - 10:07 a.m.
Security update for python-Js2Py
2024-07-0210:07:45
Google
osv.dev
python
js2py
security update
sandbox escape
untrusted javascript code
cve-2024-28397
CVSS3
5.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
AI Score
7.3
Confidence
Low
This update for python-Js2Py fixes the following issues:
- CVE-2024-28397: Fixed a potential sandbox escape via untrusted
JavaScript code (bsc#1226660).
Related
nessus
nessus
openSUSE 15 Security Update : python-Js2Py (SUSE-SU-2024:2272-1)
2024-07-03 00:00:00
osv
osv
python310-Js2Py-0.74-3.1 on GA media
2024-07-01 00:00:00
CVE-2024-28397
2024-06-20 17:15:00
js2py allows remote code execution
2024-06-20 18:34:08
cvelist
cvelist
CVE-2024-28397
2024-06-20 00:00:00
cve
cve
CVE-2024-28397
2024-06-20 17:15:50
github
github
js2py allows remote code execution
2024-06-20 18:34:08
pyload-ng vulnerable to RCE with js2py sandbox escape
2024-09-09 18:17:20
nvd
nvd
CVE-2024-28397
2024-06-20 17:15:50
veracode
veracode
Remote Code Execution (RCE)
2024-06-21 07:01:58
githubexploit
githubexploit
Exploit for CVE-2024-28397
2024-06-19 01:46:33
Exploit for CVE-2024-28397
2024-06-21 04:43:21
ubuntucve
ubuntucve
CVE-2024-28397
2024-06-20 00:00:00
vulnrichment
vulnrichment
CVE-2024-28397
2024-06-20 00:00:00
mageia
mageia
Updated python-js2py packages fix security vulnerability
2024-07-05 19:28:37
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0256)
2024-07-08 00:00:00
openSUSE: Security Advisory for python (SUSE-SU-2024:2272-1)
2024-07-10 00:00:00
CVSS3
5.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
AI Score
7.3
Confidence
Low
Related for OSV:SUSE-SU-2024:2272-1