CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2025/06/16 12:0 a.m.•5 views

TencentOS Server 4: python-tornado (TSSA-2024:1045)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:1045 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

CBLMariner•added 2025/05/15 9:13 p.m.•5 views

CVE-2023-28370 affecting package python-tornado for versions less than 6.3.3-11

CVE-2023-28370 affecting package python-tornado for versions less than 6.3.3-11. An upgraded version of the package is available that resolves this issue...

6.1CVSS6.9AI score0.01132EPSS

Exploits0

OSV•added 2024/12/11 3:4 p.m.•2 views

USN-7150-1 python-tornado vulnerabilities

It was discovered that Tornado incorrectly handled a certain redirect. A remote attacker could possibly use this issue to redirect a user to an arbitrary web site and conduct a phishing attack by having the user access a specially crafted URL. This issue was only addressed in Ubuntu 22.04 LTS,...

7.5CVSS7AI score0.01132EPSS

Exploits0References3

OpenVAS•added 2024/03/04 12:0 a.m.•17 views

openSUSE: Security Advisory for salt (SUSE-SU-2023:3145-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OpenVAS•added 2024/03/04 12:0 a.m.•20 views

openSUSE: Security Advisory for salt (SUSE-SU-2023:3139-1)

Tenable Nessus•added 2024/02/29 12:0 a.m.•25 views

CentOS 9 : python-tornado-6.1.0-9.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the python- tornado-6.1.0-9.el9 build changelog. - Open redirect vulnerability in Tornado versions 6.3.1 and earlier allows a remote unauthenticated attacker to redirect a user to an...

Tenable Nessus•added 2023/11/16 12:0 a.m.•20 views

Oracle Linux 9 : python-tornado (ELSA-2023-6523)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-6523 advisory. 6.1.0-9 - Fix an open redirect in StaticFileHandler Resolves: CVE-2023-28370 Tenable has extracted the preceding description block directly from the Oracle Linu...

6.1CVSS6.2AI score0.01132EPSS

Oracle linux•added 2023/11/11 12:0 a.m.•23 views

python-tornado security update

6.1.0-9 - Fix an open redirect in StaticFileHandler Resolves: CVE-2023-28370...

6.1CVSS6.9AI score0.01132EPSS

Exploits0

OSV•added 2023/11/07 12:0 a.m.•29 views

ALSA-2023:6523 Moderate: python-tornado security update

Tornado is a Python web framework and asynchronous networking library that provides an open source version of scalable, non-blocking web server and tools. Security Fixes: python-tornado: open redirect vulnerability in StaticFileHandler under certain configurations CVE-2023-28370 For more details...

6.1CVSS6.5AI score0.01132EPSS

Exploits0References4

Tenable Nessus•added 2023/11/07 12:0 a.m.•18 views

RHEL 9 : python-tornado (RHSA-2023:6523)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:6523 advisory. Tornado is a Python web framework and asynchronous networking library that provides an open source version of scalable, non-blocking web server and...

6.1CVSS6.3AI score0.01132EPSS

AlmaLinux•added 2023/11/07 12:0 a.m.•22 views

Moderate: python-tornado security update

6.1CVSS7.1AI score0.01132EPSS

Exploits0References4

Tenable Nessus•added 2023/08/03 12:0 a.m.•21 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : SUSE Manager Client Tools (SUSE-SU-2023:3144-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3144-1 advisory. - Open redirect vulnerability in Tornado versions 6.3.1 and earlier allows a remote unauthenticated...

Tenable Nessus•added 2023/08/03 12:0 a.m.•21 views

SUSE SLES15 Security Update : salt (SUSE-SU-2023:3123-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3123-1 advisory. - Open redirect vulnerability in Tornado versions 6.3.1 and earlier allows a remote unauthenticated attacker to redirect a user to an...

Tenable Nessus•added 2023/08/03 12:0 a.m.•14 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : salt (SUSE-SU-2023:3139-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3139-1 advisory. - Open redirect vulnerability in Tornado versions 6.3.1 and earlier allows a remote unauthenticated...

Tenable Nessus•added 2023/08/03 12:0 a.m.•26 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : salt (SUSE-SU-2023:3145-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3145-1 advisory. - Open redirect vulnerability in Tornado versions 6.3.1 and earlier allows a remote unauthenticated...

Tenable Nessus•added 2023/08/03 12:0 a.m.•18 views

SUSE SLES12 Security Update : SUSE Manager Client Tools (SUSE-SU-2023:3122-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3122-1 advisory. - Open redirect vulnerability in Tornado versions 6.3.1 and earlier allows a remote unauthenticated attacker to redirect a user to an...

OpenVAS•added 2023/08/03 12:0 a.m.•11 views

Exploits0References7

SUSE: Security Advisory (SUSE-SU-2023:3131-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OpenVAS•added 2023/08/03 12:0 a.m.•14 views

SUSE: Security Advisory (SUSE-SU-2023:3144-1)

OSV•added 2023/08/02 7:29 a.m.•4 views

SUSE-SU-2023:3144-1 Security update for SUSE Manager Client Tools

This update fixes the following issues: python-tornado: - Security fixes: CVE-2023-28370: Fixed an open redirect issue in the static file handler bsc1211741 prometheus-blackboxexporter: - Use obscpio for go modules service - Set version number - Set build date from SOURCEDATEEPOCH - Update to...