CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Rockylinux•added 2026/05/21 4:24 p.m.•9 views

python3 security update

An update is available for python3. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Python is an interpreted, interactive, object-oriented programming language,...

RedHat Linux•added 2026/05/19 6:24 p.m.•8 views

Exploits0

python: Python: Command-line option injection in webbrowser.open() via crafted URLs

A flaw was found in Python. The webbrowser.open API, used to launch web browsers, does not properly sanitize input. This allows a remote attacker to craft a malicious URL containing leading dashes. When such a URL is opened, certain web browsers may interpret these dashes as command-line options,...

7CVSS7AI score0.00015EPSS

Exploits0References7

OSV•added 2026/05/19 12:0 a.m.•6 views

ALSA-2026:19175 Important: python3.11 security update

9.1CVSS7.3AI score0.00164EPSS

Exploits0References8

AlmaLinux•added 2026/05/19 12:0 a.m.•8 views

Important: python3.11 security update

9.1CVSS7.3AI score0.00164EPSS

Exploits0References8

Vulnrichment•added 2026/05/12 12:0 a.m.•3 views

CVE-2026-31230

The Adversarial Robustness Toolbox ART thru 1.20.1 contains a command-line argument injection vulnerability in its Kubeflow component robustnessevaluationfgsmpytorch.py. The script uses the unsafe eval function to parse string values provided via the --clipvalues and --inputshape command-line...

6.3AI score0.00102EPSS

OSV•added 2026/05/06 5:31 p.m.•5 views

CLSA-2026-1778002331 python3: Fix of CVE-2026-4519

CVE-2026-4519: reject leading dashes in webbrowser URLs to prevent CLI option injection in pydoc/subprocess...

7CVSS7.1AI score0.00015EPSS

Exploits0References1

OSV•added 2026/05/06 5:16 p.m.•4 views

CLSA-2026-1778087756 python3: Fix of 2 CVEs

CVE-2026-4519: reject leading dashes in webbrowser URLs to block command-line option injection via webbrowser.open - CVE-2026-4786: validate the post-substitution URL in webbrowser UnixBrowser.open so that "%action" cannot smuggle a dash-prefixed flag past the CVE-2026-4519 dash-prefix check...

7CVSS7.1AI score0.00021EPSS

Exploits0References1

OSV•added 2026/05/05 5:35 p.m.•5 views

CLSA-2026-1778002076 python3: Fix of CVE-2026-4519

CVE-2026-4519: reject leading dashes in webbrowser URLs to prevent CLI option injection in pydoc/subprocess...

7CVSS7.1AI score0.00015EPSS

Exploits0References1

RedHat Linux•added 2026/04/23 6:24 p.m.•4 views

Important: Red Hat Security Advisory: python3.12 security update

An update for python3.12 is now available for Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

RedHat Linux•added 2026/04/23 4:40 p.m.•4 views

python: Python: Command-line option injection in webbrowser.open() via crafted URLs

7CVSS6AI score0.00015EPSS

Exploits0References7

Tenable Nessus•added 2026/04/23 12:0 a.m.•2 views

RHEL 6 : python (RHSA-2026:10102)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:10102 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic da...

7CVSS5.5AI score0.00015EPSS

Tenable Nessus•added 2026/04/23 12:0 a.m.•4 views

RHEL 9 : python3.12 (RHSA-2026:10111)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:10111 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic da...

7CVSS5.5AI score0.00015EPSS

RedHat Linux•added 2026/04/22 7:9 a.m.•3 views

python: Python: Command-line option injection in webbrowser.open() via crafted URLs

7CVSS6AI score0.00015EPSS

Exploits0References7

Tenable Nessus•added 2026/04/22 12:0 a.m.•1 views

RHEL 9 : python3.11 (RHSA-2026:9705)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:9705 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic dat...

Tenable Nessus•added 2026/04/22 12:0 a.m.•4 views

RHEL 8 : python3.11 (RHSA-2026:9591)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:9591 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic dat...

Tenable Nessus•added 2026/04/22 12:0 a.m.•3 views

RHEL 7 : python (RHSA-2026:9614)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:9614 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic dat...

RedHat Linux•added 2026/04/21 4:29 p.m.•4 views

Important: Red Hat Security Advisory: python3 security update

An update for python3 is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update as...