Lucene search
K

11 matches found

Mageia
Mageia
added 2026/04/18 4:43 p.m.8 views

Updated python-cairosvg packages fix security vulnerability

CairoSVG vulnerable to Exponential DoS via recursive element amplification. CVE-2026-31899...

7.5CVSS5.7AI score0.0049EPSS
Exploits2References3
OSV
OSV
added 2026/03/13 7:38 p.m.5 views

CVE-2026-31899 CairoSVG vulnerable to Exponential DoS via recursive <use> element amplification

CairoSVG is an SVG converter based on Cairo, a 2D graphics library. Prior to Kozea/CairoSVG has exponential denial of service via recursive element amplification in cairosvg/defs.py. This causes CPU exhaustion from a small input...

7.5CVSS5.8AI score0.0049EPSS
Exploits2References4
vulnersOsv
vulnersOsv
added 2026/03/13 6:57 p.m.4 views

aksharify (=0.2.0), buildbot-badges (>=1.7.0 <=1.8.2) +51 more potentially affected by CVE-2026-31899 via cairosvg (>=0.5.0 <=2.8.2)

cairosvg PYPI version =0.5.0, =1.7.0, =0.1.0, =0.20.7, =1.0.0b1, =0.0.2, =2025.5.0, =1.0.0, =0.1.0, =1.3.6, =0.2.2, =0.2.32 and more Source cves: CVE-2026-31899 Source advisory: OSV:GHSA-F38F-5XPM-9R7C...

7.5CVSS5.4AI score0.0049EPSS
Exploits2
vulnersOsv
vulnersOsv
added 2026/03/13 6:57 p.m.7 views

aksharify (=0.2.0), chem-eclipse (=0.1.0) +48 more potentially affected by CVE-2026-31899 via cairosvg (>=2.1.3 <=2.8.2)

cairosvg PYPI version =2.1.3, =0.1.0, =0.20.7, =1.0.0b1, =0.0.2, =2025.5.0, =1.0.0, =0.1.0, =1.3.6, =0.2.2, =0.1.0, =0.3.0 and more Source cves: CVE-2026-31899 Source advisory: SNYK:PYTHON-CAIROSVG-15610289...

7.5CVSS5.8AI score0.0049EPSS
Exploits2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-0039

Malware in sbrugna...

5.7CVSS5.6AI score0.01466EPSS
Exploits1References10
Redos
Redos
added 2023/04/11 12:0 a.m.61 views

ROS-20230411-01

The CairoSVG SVG converter vulnerability is related to insufficient validation of user input during the SVG file processing. Exploitation of the vulnerability could allow an attacker acting remotely, access sensitive data located on a local network or send malicious requests to other servers from...

9.9CVSS6.6AI score0.00722EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2023/03/20 9:27 p.m.12 views

buildbot-badges (>=1.7.0 <=1.8.2), cico (>=0.1.0 <=0.1.8) +18 more potentially affected by CVE-2023-27586 via cairosvg (>=0.5.0 <=2.6.0)

cairosvg PYPI version =0.5.0, =1.7.0, =0.1.0, =1.0.0b1, =0.0.2, =0.1.0, =0.1.0, =2.11.0, =4.3.0, =0.0.1, =9.0.5, =1.0.0, =0.1.0, =0.2.7 and more Source cves: CVE-2023-27586 Source advisory: OSV:GHSA-RWMF-W63J-P7GV...

9.9CVSS7.1AI score0.00722EPSS
Exploits0
OSV
OSV
added 2023/03/20 4:15 p.m.3 views

DEBIAN-CVE-2023-27586

CairoSVG is an SVG converter based on Cairo, a 2D graphics library. Prior to version 2.7.0, Cairo can send requests to external hosts when processing SVG files. A malicious actor could send a specially crafted SVG file that allows them to perform a server-side request forgery or denial of service...

7.1CVSS7.4AI score0.00722EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/03/20 3:23 p.m.6 views

CVE-2023-27586 CairoSVG improperly processes SVG files loaded from external resources

CairoSVG is an SVG converter based on Cairo, a 2D graphics library. Prior to version 2.7.0, Cairo can send requests to external hosts when processing SVG files. A malicious actor could send a specially crafted SVG file that allows them to perform a server-side request forgery or denial of service...

9.9CVSS9.3AI score0.00722EPSS
Exploits0References4
vulnersOsv
vulnersOsv
added 2021/01/06 5:15 p.m.5 views

buildbot-badges (>=1.7.0 <=1.8.2), cico (>=0.1.0 <=0.1.8) +9 more potentially affected by CVE-2021-21236 via cairosvg (>=0.5.0 <=2.5.0)

cairosvg PYPI version =0.5.0, =1.7.0, =0.1.0, =0.1.0, =2.11.0, =0.0.1, =1.0.0, =0.1.0, =1.0.0, =1.1.0 - wiking =2.2.1 Source cves: CVE-2021-21236 Source advisory: OSV:PYSEC-2021-5...

5.7CVSS6.6AI score0.01466EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/01/06 4:57 p.m.6 views

buildbot-badges (>=1.7.0 <=1.8.2), cico (>=0.1.0 <=0.1.8) +9 more potentially affected by CVE-2021-21236 via cairosvg (>=0.5.0 <=2.5.0)

cairosvg PYPI version =0.5.0, =1.7.0, =0.1.0, =0.1.0, =2.11.0, =0.0.1, =1.0.0, =0.1.0, =1.0.0, =1.1.0 - wiking =2.2.1 Source cves: CVE-2021-21236 Source advisory: OSV:GHSA-HQ37-853P-G5CF...

5.7CVSS6.6AI score0.01466EPSS
Exploits1
Rows per page
Query Builder