Lucene search
+L

1062 matches found

RedHat Linux
RedHat Linux
added 2025/12/22 4:40 p.m.10 views

cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked

A zip file handling flaw has been discovered in the python standard library zipfile module. The 'zipfile' module would not check the validity of the ZIP64 End of Central Directory EOCD Locator record offset value would not be used to locate the ZIP64 EOCD record, instead the ZIP64 EOCD record wou...

4.3CVSS6.2AI score0.00353EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/12/22 12:0 a.m.13 views

AlmaLinux 8 : python39:3.9 (ALSA-2025:23530)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:23530 advisory. python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used CVE-2024-5642 python: Virtual environment venv activation scripts don't...

9.4CVSS6.8AI score0.01499EPSS
Exploits14References14
Rockylinux
Rockylinux
added 2025/12/19 9:5 a.m.9 views

python3.9 security update

An update is available for python3.9. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Python is an interpreted, interactive, object-oriented programming language...

6.5CVSS6.7AI score0.00744EPSS
Exploits0
OSV
OSV
added 2025/12/19 9:5 a.m.8 views

RLSA-2025:23323 Moderate: python3.12 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

4.3CVSS6.8AI score0.00353EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/12/19 12:0 a.m.2 views

RockyLinux 9 : python3.12 (RLSA-2025:23323)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:23323 advisory. cpython: python: Python zipfile End of Central Directory EOCD Locator record offset not checked CVE-2025-8291 Tenable has extracted the preceding description blo...

4.3CVSS6.9AI score0.00353EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/12/19 12:0 a.m.3 views

RockyLinux 9 : python3.9 (RLSA-2025:23342)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:23342 advisory. python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used CVE-2024-5642 cpython: Python HTMLParser quadratic complexity...

6.5CVSS6.4AI score0.00744EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2025/12/18 1:21 p.m.13 views

cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked

A zip file handling flaw has been discovered in the python standard library zipfile module. The 'zipfile' module would not check the validity of the ZIP64 End of Central Directory EOCD Locator record offset value would not be used to locate the ZIP64 EOCD record, instead the ZIP64 EOCD record wou...

4.3CVSS6.2AI score0.00353EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2025/12/18 1:19 p.m.7 views

Moderate: Red Hat Security Advisory: python3.12 security update

An update for python3.12 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

4.3CVSS6.6AI score0.00353EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2025/12/18 1:19 p.m.6 views

cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked

A zip file handling flaw has been discovered in the python standard library zipfile module. The 'zipfile' module would not check the validity of the ZIP64 End of Central Directory EOCD Locator record offset value would not be used to locate the ZIP64 EOCD record, instead the ZIP64 EOCD record wou...

4.3CVSS6.2AI score0.00353EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2025/12/18 1:35 a.m.429 views

cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked

A zip file handling flaw has been discovered in the python standard library zipfile module. The 'zipfile' module would not check the validity of the ZIP64 End of Central Directory EOCD Locator record offset value would not be used to locate the ZIP64 EOCD record, instead the ZIP64 EOCD record wou...

4.3CVSS6.2AI score0.00353EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.9 views

RockyLinux 8 : python39:3.9 (RLSA-2025:23530)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:23530 advisory. python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used CVE-2024-5642 python: Virtual environment venv activation scripts don'...

9.4CVSS6.8AI score0.01499EPSS
Exploits14References25
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.9 views

RHEL 9 : python3.9 (RHSA-2025:23342)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:23342 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level...

6.5CVSS6.6AI score0.00744EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.3 views

RHEL 9 : python3.12 (RHSA-2025:23323)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:23323 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic da...

4.3CVSS6.9AI score0.00353EPSS
Exploits0References6
AlmaLinux
AlmaLinux
added 2025/12/17 12:0 a.m.11 views

Important: python39:3.9 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

9.4CVSS7AI score0.01499EPSS
Exploits14References26
AlmaLinux
AlmaLinux
added 2025/12/16 12:0 a.m.11 views

Moderate: python3.12 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

4.3CVSS6.9AI score0.00353EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/12/14 7:12 p.m.7 views

WordPress Store Locator WordPress plugin <= 1.6.2 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Jarno Vos jrn5151 in WordPress Plugin Store Locator WordPress versions = 1.6.2...

9.8CVSS8.1AI score0.00263EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/12/10 2:23 p.m.5 views

CVE-2025-67516

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Agile Logix Store Locator WordPress agile-store-locator allows Blind SQL Injection.This issue affects Store Locator WordPress: from n/a through = 1.6.2...

8.5CVSS7.6AI score0.00263EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/09 6:30 p.m.7 views

EUVD-2025-202128

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Agile Logix Store Locator WordPress agile-store-locator allows Blind SQL Injection.This issue affects Store Locator WordPress: from n/a through = 1.6.2...

7.1AI score0.00263EPSS
Exploits0References2
NVD
NVD
added 2025/12/09 4:18 p.m.4 views

CVE-2025-67516

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Agile Logix Store Locator WordPress agile-store-locator allows Blind SQL Injection.This issue affects Store Locator WordPress: from n/a through = 1.6.2...

8.5CVSS0.00263EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/09 2:13 p.m.27 views

CVE-2025-67516 WordPress Store Locator WordPress plugin <= 1.6.2 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Agile Logix Store Locator WordPress agile-store-locator allows Blind SQL Injection.This issue affects Store Locator WordPress: from n/a through = 1.6.2...

8.5CVSS0.00263EPSS
Exploits0References1
Rows per page
Query Builder