Lucene search
K

PT-2023-9652 · Python +6 · Python +6

🗓️ 11 Jul 2023 00:00:00Reported by Positive TechnologiesType 
ptsecurity
 ptsecurity
🔗 dbugs.ptsecurity.com👁 13 Views

Python 3.11 to 3.11.4: os.path.normpath truncates at null bytes, risking allowlist bypass.

Related
Refs
ReporterTitlePublishedViews
Family
IBM Security Bulletins
Security Bulletin: IBM Cloud Transformation Advisor is vulnerable to multiple vulnerabilities found in Java, Node.js and IBM WebSphere Application Server Liberty
15 Apr 202502:54
ibm
IBM Security Bulletins
Security Bulletin: IBM Security SOAR is using a component with known vulnerabilities (CVE-2022-0391)
1 Jun 202210:29
ibm
IBM Security Bulletins
Security Bulletin: Multiple vulnerabilities in IBM Storage Defender – Data Protect
30 Aug 202317:27
ibm
IBM Security Bulletins
Security Bulletin: Multiple Vulnerabilities in IBM API Connect
15 Mar 202500:18
ibm
IBM Security Bulletins
Security Bulletin: IBM Security Guardium Insights is affected by multipe vulnerabilities
4 Feb 202221:33
ibm
IBM Security Bulletins
Security Bulletin: Vulnerability in Python affects IBM Analytics Engine (CVE-2018-14647)
3 Jun 201921:25
ibm
IBM Security Bulletins
Security Bulletin: Vulnerabilities in the Linux Kernel, Samba, Sudo, Python, and tcmu-runner affect IBM Spectrum Protect Plus
6 May 202202:35
ibm
IBM Security Bulletins
Security Bulletin: Vulnerability with Python affect IBM Cloud Object Storage Systems (Sept2023v2)
25 Sep 202322:25
ibm
IBM Security Bulletins
Security Bulletin: Python (Publicly disclosed vulnerability) in IBM Tivoli Application Dependency Discovery Manager (CVE-2022-0391)
18 Nov 202212:26
ibm
IBM Security Bulletins
Security Bulletin: Vulnerabilities in Certifi, Setuptools and Python may affect IBM Spectrum Protect Plus Microsoft File Systems Backup and Restore (CVE-2022-23491, CVE-2022-40897, CVE-2022-45061)
1 Feb 202310:43
ibm
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

11 Aug 2025 00:00Current
6.6Medium risk
Vulners AI Score6.6
CVSS 27.8 - 8
CVSS 3.19.8
CVSS 37.5 - 9.8
EPSS0.27095
SSVC
13