Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2023-38898
HistoryAug 15, 2023 - 5:15 p.m.

Code injection

2023-08-1517:15:00
PRIOn knowledge base
www.prio-n.com
7
python cpython v.3.7
code injection
asyncio.

5.1 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.1%

JSON

DISPUTED An issue in Python cpython v.3.7 allows an attacker to obtain sensitive information via the _asyncio._swap_current_task component. NOTE: this is disputed by the vendor because (1) neither 3.7 nor any other release is affected (it is a bug in some 3.12 pre-releases); (2) there are no common scenarios in which an adversary can call _asyncio._swap_current_task but does not already have the ability to call arbitrary functions; and (3) there are no common scenarios in which sensitive information, which is not already accessible to an adversary, becomes accessible through this bug.

CPENameOperatorVersion
pythoneq3.13.0 alpha0

Related

cve 1
ubuntucve 1
cvelist 1
debiancve 1
nvd 1
redhatcve 1
osv 6
cve
cve
CVE-2023-38898
2023-08-15 17:15:12
ubuntucve
ubuntucve
CVE-2023-38898
2023-08-15 00:00:00
cvelist
cvelist
CVE-2023-38898
2023-08-15 00:00:00
debiancve
debiancve
CVE-2023-38898
2023-08-15 17:15:12
nvd
nvd
CVE-2023-38898
2023-08-15 17:15:12
redhatcve
redhatcve
CVE-2023-38898
2023-08-22 17:50:29
osv
osv
BIT-python-2023-38898
2024-03-06 11:03:22
Reference count issue in _asyncio._swap_current_task()
2023-08-15 00:00:00
BIT-python-2022-48566
2024-03-06 11:04:14

5.1 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.1%

JSON
Related for PRION:CVE-2023-38898
cve1ubuntucve1cvelist1debiancve1nvd1redhatcve1osv6