Lucene search
K

159 matches found

Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.25 views

RHEL 9 : OpenShift Container Platform 4.12.41 (RHSA-2023:6128)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:6128 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud...

7.5CVSS6.8AI score0.01807EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/04/12 2:14 a.m.1 views

SUSE CVE-2023-29483

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

5.9CVSS9.3AI score0.01857EPSS
Exploits1References10
vulnersOsv
vulnersOsv
added 2024/04/11 3:30 p.m.3 views

aalam-common (=0.1.78), agency (>=1.0.0 <=1.1.0) +142 more potentially affected by CVE-2023-29483 via eventlet (>=0.20.0 <=0.34.2)

eventlet PYPI version =0.20.0, =1.0.0, =0.5.5, =0.61.9, =0.4.0, =2.3.0, =1.0.5, =0.6.7.post3, =0.0.17, =1.0.12, =0.1.3, =0.45.15, =0.1.6, =0.1.6.7 and more Source cves: CVE-2023-29483 Source advisory: OSV:GHSA-3RQ5-2G8H-59HC...

7CVSS6.7AI score0.01857EPSS
Exploits1
Github Security Blog
Github Security Blog
added 2024/04/11 3:30 p.m.39 views

Potential DoS via the Tudoor mechanism in eventlet and dnspython

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

7CVSS6.8AI score0.01857EPSS
Exploits1References14Affected Software2
OSV
OSV
added 2024/04/11 3:30 p.m.29 views

GHSA-3RQ5-2G8H-59HC Potential DoS via the Tudoor mechanism in eventlet and dnspython

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

5.9CVSS6.5AI score0.01857EPSS
Exploits1References14
NVD
NVD
added 2024/04/11 2:15 p.m.17 views

CVE-2023-29483

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

7CVSS8.3AI score0.01857EPSS
Exploits1References12
OSV
OSV
added 2024/04/11 2:15 p.m.2 views

DEBIAN-CVE-2023-29483

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

7CVSS6.9AI score0.01857EPSS
Exploits1References1
OSV
OSV
added 2024/04/11 2:15 p.m.27 views

CVE-2023-29483

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

7CVSS6.8AI score
Exploits0References12
OSV
OSV
added 2024/04/11 2:15 p.m.2 views

UBUNTU-CVE-2023-29483

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

7CVSS7AI score0.01857EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/04/11 12:0 a.m.16 views

CVE-2023-29483

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

6.8AI score0.01857EPSS
Exploits1References10
CNNVD
CNNVD
added 2024/04/11 12:0 a.m.2 views

Eventlet 安全漏洞

Eventlet is a concurrent networking library for Python. A security vulnerability exists in Eventlet versions prior to 0.35.2 that originated from allowing remote attackers to interfere with DNS name resolution by rapidly sending invalid packets from the expected IP address and source port...

7CVSS7.2AI score0.01857EPSS
Exploits1References12
Cvelist
Cvelist
added 2024/04/11 12:0 a.m.28 views

CVE-2023-29483

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

6.6AI score0.01857EPSS
Exploits1References10
Debian CVE
Debian CVE
added 2024/04/11 12:0 a.m.41 views

CVE-2023-29483

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

7CVSS7AI score0.01857EPSS
Exploits1
Redos
Redos
added 2024/04/09 12:0 a.m.22 views

ROS-20240409-13

A vulnerability in the python-eventlet library of the OpenStack Platform cloud building platform is related to incorrect resource sweeping or freeing. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS7.1AI score0.00802EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/01/16 2:36 p.m.4 views

python-eventlet: patch regression for CVE-2021-21419 in some Red Hat builds

A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch application strategy, resulting in a patch for CVE-2021-21419 not being applied for all builds of all products...

7.5CVSS7.3AI score0.01807EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/01/16 2:33 p.m.39 views

Moderate: Red Hat Security Advisory: Red Hat OpenStack Platform 17.1 (python-eventlet) security update

An update for python-eventlet is now available for Red Hat OpenStack Platform 17.1 Wallaby. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.7AI score0.01807EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/01/16 2:33 p.m.3 views

python-eventlet: patch regression for CVE-2021-21419 in some Red Hat builds

A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch application strategy, resulting in a patch for CVE-2021-21419 not being applied for all builds of all products...

7.5CVSS7.3AI score0.01807EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.30 views

RHEL 9 : Red Hat OpenStack Platform 17.1 (python-eventlet) (RHSA-2024:0213)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:0213 advisory. Eventlet is a networking library written in Python. It achieves high scalability by using non-blocking io while at the same time retaining high...

7.5CVSS6.8AI score0.01807EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2023/11/29 12:0 a.m.10 views

The vulnerability of the python-eventlet library used by the OpenStack Platform for building cloud solutions allows a attacker to cause service failures.

The vulnerability of the python-eventlet library used by the OpenStack Platform for building cloud solutions is related to improper cleaning or release of resources. Exploiting this vulnerability can allow a malicious actor to cause service failures...

7.8CVSS6.4AI score0.00802EPSS
Exploits0References5Affected Software4
SUSE CVE
SUSE CVE
added 2023/11/03 1:43 a.m.3 views

SUSE CVE-2023-5625

A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch application strategy, resulting in a patch for CVE-2021-21419 not being applied for all builds of all products...

7.5CVSS7.5AI score0.00802EPSS
Exploits0References3
Rows per page
Query Builder