Lucene search
K

99 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/22 12:0 a.m.12 views

RockyLinux 8 : python3 (RLSA-2025:14560)

The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:14560 advisory. cpython: Cpython infinite loop when parsing a tarfile CVE-2025-8194 Tenable has extracted the preceding description block directly from the RockyLinux security...

7.5CVSS5.8AI score0.00611EPSS
Exploits0References3
OSV
OSV
added 2026/05/05 1:20 a.m.5 views

CLSA-2026-1777944042 Fix CVE(s): CVE-2025-8194, CVE-2026-4519, CVE-2026-4786

SECURITY UPDATE: tarfile DoS via negative member offsets - debian/patches/CVE-2025-8194.patch: validate that member offsets are non-negative in Lib/tarfile.py. - CVE-2025-8194 SECURITY UPDATE: webbrowser.open accepts URLs with leading dashes - debian/patches/CVE-2026-4519-CVE-2026-4786.patch:...

7.5CVSS6.8AI score0.00611EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.6 views

Oracle Linux 7 : python3 (ELSA-2026-6464)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-6464 advisory. - Security update CVE-2025-15366, CVE-2025-15367, CVE-2026-1299 Orabug: 39159999 - Security update CVE-2025-12084 Orabug: 38971895 - tarfile now...

7.5CVSS6.8AI score0.02203EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2026/03/31 12:0 a.m.15 views

Nutanix AHV : Multiple Vulnerabilities (NXSA-AHV-10.0.1.5)

The version of AHV installed on the remote host is prior to AHV-10.0.1.5. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AHV-10.0.1.5 advisory. - A vulnerability has been identified in the libarchive library, specifically within the archivereadformatrarseekdata...

7.8CVSS6.2AI score0.00985EPSS
Exploits4References6
OSV
OSV
added 2026/03/03 10:22 p.m.6 views

CLSA-2026-1772576551 python: Fix of CVE-2025-8194

CVE-2025-8194: tarfile now validates archives to ensure member offsets are non-negative...

7.5CVSS5.8AI score0.00611EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2026/01/30 12:0 a.m.7 views

SUSE: Security Advisory (SUSE-SU-2026:20125-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.01525EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.4 views

MiracleLinux 8 : python3.12-3.12.11-2.el8_10 (AXSA:2025-10803:10)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10803:10 advisory. cpython: Cpython infinite loop when parsing a tarfile CVE-2025-8194 Tenable has extracted the preceding description block directly from the MiracleLinux...

7.5CVSS6.9AI score0.00611EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.7 views

MiracleLinux 8 : python39:3.9 (AXSA:2025-10818:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10818:01 advisory. setuptools: Path Traversal Vulnerability in setuptools PackageIndex CVE-2025-47273 cpython: Cpython infinite loop when parsing a tarfile...

8.8CVSS6.8AI score0.01479EPSS
Exploits4References3
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.6 views

MiracleLinux 7 : python3-3.6.8-21.0.5.0.1.el7.AXS7 (AXSA:2025-11016:07)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-11016:07 advisory. Bump package Release to 21.0.5 CVE-2025-8194: tarfile: validate archives to ensure member offsets are non-negative CVEs: CVE-2025-8194 There is a defect in...

7.5CVSS6.9AI score0.00611EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.4 views

MiracleLinux 8 : python3-3.6.8-71.el8_10.ML.1 (AXSA:2025-10807:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10807:03 advisory. cpython: Cpython infinite loop when parsing a tarfile CVE-2025-8194 Tenable has extracted the preceding description block directly from the MiracleLinux...

7.5CVSS6.9AI score0.00611EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.5 views

MiracleLinux 8 : python3.11-3.11.13-2.el8_10 (AXSA:2025-10802:08)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10802:08 advisory. cpython: Cpython infinite loop when parsing a tarfile CVE-2025-8194 Tenable has extracted the preceding description block directly from the MiracleLinux...

7.5CVSS6.9AI score0.00611EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.5 views

MiracleLinux 9 : python3.9-3.9.21-2.el9_6.2 (AXSA:2025-10822:03)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10822:03 advisory. cpython: Cpython infinite loop when parsing a tarfile CVE-2025-8194 Tenable has extracted the preceding description block directly from the MiracleLinux...

7.5CVSS6.9AI score0.00611EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/12/31 12:0 a.m.6 views

Huawei EulerOS: Security Advisory for python3 (EulerOS-SA-2025-2628)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.00611EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/12/15 12:0 a.m.8 views

RHEL 10 : python3.12 (RHSA-2025:14984)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:14984 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic...

7.5CVSS6.9AI score0.00611EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2025/12/11 12:0 a.m.2 views

Huawei EulerOS: Security Advisory for python3 (EulerOS-SA-2025-2469)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.00611EPSS
Exploits0References3
OSV
OSV
added 2025/11/13 11:39 a.m.3 views

CLSA-2025-1763033941 python: Fix of CVE-2025-8194

CVE-2025-8194: fix infinite loop and deadlock in TarFile extraction and entry enumeration APIs...

7.5CVSS5.8AI score0.00611EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2025/11/12 12:0 a.m.8 views

Huawei EulerOS: Security Advisory for python3 (EulerOS-SA-2025-2370)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.4CVSS7.3AI score0.01184EPSS
Exploits14References4
OpenVAS
OpenVAS
added 2025/11/12 12:0 a.m.6 views

Huawei EulerOS: Security Advisory for python3 (EulerOS-SA-2025-2339)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.4CVSS7.3AI score0.01184EPSS
Exploits14References4
OSV
OSV
added 2025/10/20 5:52 p.m.5 views

CLSA-2025-1760982776 python3: Fix of CVE-2025-8194

Bump package Release to 21.0.5 - CVE-2025-8194: tarfile: validate archives to ensure member offsets are non-negative...

7.5CVSS7.2AI score0.00611EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2025/10/20 12:0 a.m.6 views

Fedora: Security Advisory (FEDORA-2025-72bbdc5a1e)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.00611EPSS
Exploits0References5
Rows per page
Query Builder