Lucene search
K

45 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : python36:3.6 (AXSA:2024-9397:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9397:01 advisory. virtualenv: potential command injection via virtual environment activation scripts CVE-2024-53899 Tenable has extracted the preceding description block...

8.4CVSS8.1AI score0.01557EPSS
Exploits1References2
OPENSUSE Linux
OPENSUSE Linux
added 2025/07/05 12:0 a.m.4 views

oci-cli-3.61.0-1.1 on GA media (moderate)

oci-cli-3.61.0-1.1 on GA media Announcement ID: openSUSE-SU-2025:15252-1 Rating: moderate Cross-References: CVE-2024-53899 CVSS scores: CVE-2024-53899 SUSE : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2024-53899 SUSE : 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N...

7.8CVSS8.1AI score0.01557EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.11 views

TencentOS Server 2: python-virtualenv (TSSA-2024:1132)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:1132 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...

8.4CVSS7.3AI score0.01557EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.4 views

TencentOS Server 3: python36:3.6 (TSSA-2024:1118)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:1118 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

8.4CVSS7.3AI score0.01557EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.3 views

TencentOS Server 4: python-virtualenv (TSSA-2025:0386)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0386 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

8.4CVSS7.3AI score0.01557EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/05/26 12:0 a.m.4 views

Fedora: Security Advisory (FEDORA-2024-8568f9cd5e)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS7.1AI score0.01557EPSS
Exploits1References14
Tenable Nessus
Tenable Nessus
added 2025/03/20 12:0 a.m.8 views

Azure Linux 3.0 Security Update: python-virtualenv (CVE-2024-53899)

The version of python-virtualenv installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-53899 advisory. - virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual...

8.4CVSS7.3AI score0.01557EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/03/20 12:0 a.m.18 views

CBL Mariner 2.0 Security Update: python-virtualenv (CVE-2024-53899)

The version of python-virtualenv installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-53899 advisory. - virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual...

8.4CVSS7.3AI score0.01557EPSS
Exploits1References2
CBLMariner
CBLMariner
added 2025/03/15 3:7 p.m.12 views

CVE-2024-53899 affecting package python-virtualenv for versions less than 20.26.6-1

CVE-2024-53899 affecting package python-virtualenv for versions less than 20.26.6-1. An upgraded version of the package is available that resolves this issue...

8.4CVSS6.9AI score0.01557EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2024-53899

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly whe...

8.4CVSS7.2AI score0.01557EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2025/02/25 12:0 a.m.6 views

Ubuntu: Security Advisory (USN-7271-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS7.7AI score0.01557EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/02/25 12:0 a.m.12 views

Ubuntu 24.04 LTS : virtualenv vulnerability (USN-7271-2)

The remote Ubuntu 24.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-7271-2 advisory. USN-7271-1 fixed a vulnerability in virtualenv. This update provides the corresponding updates for Ubuntu 24.04 LTS. Tenable has extracted the preceding descripti...

8.4CVSS7.7AI score0.01557EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/02/13 9:52 a.m.6 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to virtualenv-20.17.1-py3-none-any.whl CVE-2024-53899

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to virtualenv-20.17.1-py3-none-any.whl CVE-2024-53899. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-53899 DESCRIPTION: virtualenv before 20.26.6 allows command...

8.4CVSS7.4AI score0.01557EPSS
Exploits1Affected Software1
Amazon
Amazon
added 2025/02/05 12:0 a.m.5 views

Important: python-virtualenv

Issue Overview: virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287. CVE-2024-53899 Affected Packages: python-virtualenv Issue...

8.4CVSS8AI score0.01557EPSS
Exploits1
Oracle linux
Oracle linux
added 2025/01/10 12:0 a.m.10 views

python-virtualenv security update

15.1.0-7.0.1 - Fixes CVE-2024-53899 Quote template strings in activation scripts Orabug: 37396464...

7.8CVSS6.9AI score0.01557EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2025/01/01 9:32 a.m.35 views

Important: Red Hat Security Advisory: python36:3.6 security update

An update for the python36:3.6 module is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated...

8.4CVSS7.2AI score0.01557EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/01/01 12:0 a.m.10 views

RHEL 8 : python36:3.6 (RHSA-2025:0002)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:0002 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic dat...

8.4CVSS7.8AI score0.01557EPSS
Exploits1References4
Rockylinux
Rockylinux
added 2024/12/19 4:18 a.m.30 views

python36:3.6 security update

An update is available for module.python36, python-wheel, python-nose, module.python-docutils, module.python-distro, module.scipy, module.python-PyMySQL, python-PyMySQL, module.python-wheel, python-distro, python-pymongo, module.python-pygments, python-docs, module.python-virtualenv,...

8.4CVSS7.4AI score0.01557EPSS
Exploits1
OSV
OSV
added 2024/12/19 4:18 a.m.21 views

RLSA-2024:10953 Important: python36:3.6 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

8.4CVSS8AI score0.01557EPSS
Exploits1References2
CBLMariner
CBLMariner
added 2024/12/19 12:10 a.m.10 views

CVE-2024-53899 affecting package python-virtualenv for versions less than 20.25.0-3

CVE-2024-53899 affecting package python-virtualenv for versions less than 20.25.0-3. A patched version of the package is available...

8.4CVSS7AI score0.01557EPSS
Exploits1
Rows per page
Query Builder