5 matches found
Security Bulletin: Python is vulnerable to CVE-2022-26488 used in IBM Maximo Application Suite
Summary IBM Maximo Application Suite uses Python which is vulnerable to CVE-2022-26488 Vulnerability Details CVEID:CVE-2022-26488 DESCRIPTION: Python could allow a local authenticated attacker to gain elevated privileges on the system, caused by an issue when the search path is inadequately...
Python Privilege Escalation Vulnerability (bpo-46948) - Windows
Python is prone to a privilege escalation vulnerability in the Windows installer. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2022-26488
creationtimestamp| type| source ---|---|--- 2022-03-10 20:22:52+00:00| seen| https://t.me/cibsecurity/38691...
CVE-2022-26488
In Python before 3.10.3 on Windows, local users can gain privileges because the search path is inadequately secured. The installer may allow a local attacker to add user-writable directories to the system search path. To exploit, an administrator must have installed Python for all users and enabl...
CVE-2022-26488
CVE-2022-26488 affects CPython on Windows. A local user can exploit an insecure PATH/search path handling during a repair operation, if Python was installed for all users and PATH entries are enabled, to hijack PATH and gain privileges. Affected: Python CPython up to 3.10.2 (also 3.7.12, 3.8.x, 3...