Lucene search
K

105 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 9 : python-jinja2-2.11.3-5.el9 (AXSA:2024-7960:01)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-7960:01 advisory. jinja2: HTML attribute injection when passing user input as keys to xmlattr filter CVE-2024-22195 Tenable has extracted the preceding description block...

6.1CVSS8.3AI score0.00892EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/07 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-22195

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Jinja is an extensible templating engine. Special placeholders in the template allow writing code similar to Python syntax. It is possible to inject arbitrary...

6.1CVSS7.1AI score0.00892EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/27 7:51 p.m.6 views

Security Bulletin: IBM Storage Ceph is vulnerable to Cross-site Scripting in Jinja2 (CVE-2024-22195)

Summary Jinja2 is used by IBM Storage Ceph and by the RHEL UBI in multiple components. CVE-2024-22195 This bulletin identifies the steps to take to address the vulnerability in Jinja2. Affected components include nvme, grafana, keepalived, haproxy, promtail. snmp, ansible, fence-agents, rust...

6.1CVSS8.3AI score0.00892EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/22 1:14 p.m.4 views

Security Bulletin: Vulnerability in jinja2 affects IBM Cloud Pak for Data System 2.0 (CPDS 2.0) [CVE-2024-22195]

Summary The jinja2 package is used by IBM Cloud Pak for Data System 2.0 . IBM Cloud Pak for Data System 2.0 has addressed the applicable CVEs CVE-2024-22195 Vulnerability Details CVEID:CVE-2024-22195 DESCRIPTION: Jinja is an extensible templating engine. Special placeholders in the template allow...

6.1CVSS6.1AI score0.00892EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.4 views

TencentOS Server 3: python-jinja2 (TSSA-2024:0203)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0203 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

6.1CVSS7.1AI score0.00892EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.6 views

TencentOS Server 3: python27:2.7 (TSSA-2024:0777)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0777 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

9.8CVSS7.7AI score0.04268EPSS
Exploits5References6
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.3 views

Alibaba Cloud Linux 3 : 0139: python-jinja2 (ALINUX3-SA-2024:0139)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0139 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-22195: Jinja is an extensible templating...

6.1CVSS7.5AI score0.00892EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/05/07 7:45 p.m.5 views

Security Bulletin: Vulnerability in Jinja2 affects IBM Cloud Pak for Data System 1.0(CPDS 1.0)[CVE-2024-22195].

Summary The Jinja2 package is used by IBM Cloud Pak for Data System 1.0. IBM Cloud Pak for Data System 1.0 has addressed the applicable CVE CVE-2024-22195. Vulnerability Details CVEID:CVE-2024-22195 DESCRIPTION: Jinja is an extensible templating engine. Special placeholders in the template allow...

6.1CVSS6.6AI score0.00892EPSS
Exploits0Affected Software1
CBLMariner
CBLMariner
added 2025/02/13 10:12 p.m.6 views

CVE-2024-22195 affecting package nodejs18 for versions less than 18.20.3-3

CVE-2024-22195 affecting package nodejs18 for versions less than 18.20.3-3. A patched version of the package is available...

6.1CVSS7.3AI score0.00892EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/02/13 4:8 p.m.4 views

CVE-2024-22195 affecting package nodejs for versions less than 20.14.0-1

CVE-2024-22195 affecting package nodejs for versions less than 20.14.0-1. A patched version of the package is available...

6.1CVSS7.3AI score0.00892EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.8 views

Azure Linux 3.0 Security Update: python-jinja2 (CVE-2024-22195)

The version of python-jinja2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-22195 advisory. - Jinja is an extensible templating engine. Special placeholders in the template allow writing code...

6.1CVSS7.6AI score0.00892EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2025/02/03 8:52 a.m.2 views

Security update for python-Jinja2

This update for python-Jinja2 fixes the following issues: CVE-2024-34064, CVE-2024-22195: HTML attribute injection when passing user input as keys to xmlattr filter bsc1223980, bsc1218722 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

6.1CVSS7.4AI score0.00979EPSS
Exploits0References8
CBLMariner
CBLMariner
added 2025/01/16 3:28 a.m.7 views

CVE-2024-22195 affecting package python-jinja2 for versions less than 3.1.2-2

CVE-2024-22195 affecting package python-jinja2 for versions less than 3.1.2-2. A patched version of the package is available...

6.1CVSS7.3AI score0.00892EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/01/16 12:0 a.m.12 views

CBL Mariner 2.0 Security Update: python-jinja2 (CVE-2024-22195)

The version of python-jinja2 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-22195 advisory. - Jinja is an extensible templating engine. Special placeholders in the template allow writing code...

6.1CVSS7.6AI score0.00892EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.10 views

Huawei EulerOS: Security Advisory for python-jinja2 (EulerOS-SA-2024-2642)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.6AI score0.00979EPSS
Exploits0References2
Rosalinux
Rosalinux
added 2024/10/03 10:37 p.m.23 views

Advisory ROSA-SA-2024-2506

Software: python-jinja2 2.10.1 OS: ROSA Virtualization 2.1 packageevrstring: python-jinja2-2.10.1-5.rv3 CVE-ID: CVE-2020-28493 BDU-ID: 2022-05230 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the Python programming language interpreter html-template tool jinja2 is related to incorrect resource...

6.1CVSS6.3AI score0.00979EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/09/10 12:0 a.m.17 views

EulerOS 2.0 SP12 : python-jinja2 (EulerOS-SA-2024-2356)

According to the versions of the python-jinja2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Jinja is an extensible templating engine. The xmlattr filter in affected versions of Jinja accepts keys containing non-attribute characters...

6.1CVSS7.2AI score0.00979EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/09/10 12:0 a.m.14 views

EulerOS 2.0 SP12 : python-jinja2 (EulerOS-SA-2024-2348)

According to the versions of the python-jinja2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Jinja is an extensible templating engine. The xmlattr filter in affected versions of Jinja accepts keys containing non-attribute characters...

7.5CVSS7.7AI score0.91969EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2024/08/20 12:0 a.m.10 views

openSUSE Security Advisory (SUSE-SU-2024:1863-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS7.1AI score0.00979EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2024/08/20 12:0 a.m.7 views

SUSE: Security Advisory (SUSE-SU-2024:1863-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS7.1AI score0.00979EPSS
Exploits0References5
Rows per page
Query Builder