CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

Tenable Nessus•added 2025/09/10 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2024-56327

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pyrage is a set of Python bindings for the rage file encryption library age in Rust. pyrage uses the Rust age crate for its underlying operations, and age is...

9.8CVSS5.8AI score0.00565EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 9:12 a.m.•1 views

CVE-2024-56327

pyrage is a set of Python bindings for the rage file encryption library age in Rust. pyrage uses the Rust age crate for its underlying operations, and age is vulnerable to GHSA-4fg7-vxc8-qx5w. All details of GHSA-4fg7-vxc8-qx5w are relevant to pyrage for the versions specified in this advisory. S...

9.8CVSS6.8AI score0.00565EPSS

Exploits0References1

SUSE CVE•added 2024/12/21 12:19 a.m.•1 views

SUSE CVE-2024-56327

9.8CVSS9.2AI score0.00565EPSS

Exploits0References3

NVD•added 2024/12/19 11:15 p.m.•15 views

CVE-2024-56327

9.8CVSS0.00565EPSS

Exploits0References3

OSV•added 2024/12/19 11:15 p.m.•0 views

UBUNTU-CVE-2024-56327

9.8CVSS7.2AI score0.00565EPSS

Exploits0References6

Cvelist•added 2024/12/19 10:24 p.m.•19 views

CVE-2024-56327 Malicious plugin names, recipients, or identities can cause arbitrary binary execution in pyrage

7.7CVSS0.00565EPSS

Exploits0References3

Vulnrichment•added 2024/12/19 10:24 p.m.•14 views

CVE-2024-56327 Malicious plugin names, recipients, or identities can cause arbitrary binary execution in pyrage

7.7CVSS6.7AI score0.00565EPSS

Exploits0References3

OSV•added 2024/12/19 10:24 p.m.•3 views

CVE-2024-56327 Malicious plugin names, recipients, or identities can cause arbitrary binary execution in pyrage

7.7CVSS6.6AI score0.00565EPSS

Exploits0References5

CVE•added 2024/12/19 10:24 p.m.•59 views

CVE-2024-56327

CVE-2024-56327 concerns pyrage (Python bindings for age). The underlying age crate is affected per GHSA-4fg7-vxc8-qx5w; pyrage versions before 1.2.0 lack plugin support and are stated as not affected. The advisory notes that the issue is addressed in pyrage 1.2.3; update to 1.2.3 or later. No pub...

9.8CVSS6.4AI score0.00565EPSS

Exploits0References3

OSV•added 2024/12/19 3:14 p.m.•7 views

GHSA-47H8-JMP3-9F28 pyrage vulnerable to malicious plugin names, recipients, or identities causing arbitrary binary execution

pyrage uses the Rust age crate for its underlying operations, and age is vulnerable to GHSA-4fg7-vxc8-qx5w. All details of GHSA-4fg7-vxc8-qx5w are relevant to pyrage for the versions specified in this advisory. See GHSA-4fg7-vxc8-qx5w for full details. Versions of pyrage before 1.2.0 lack plugin...

9.8CVSS9.3AI score0.00565EPSS

Exploits0References6

Github Security Blog•added 2024/12/19 3:14 p.m.•8 views

pyrage vulnerable to malicious plugin names, recipients, or identities causing arbitrary binary execution

9.8CVSS7AI score0.00565EPSS

Exploits0References6Affected Software1

CNNVD•added 2024/12/19 12:0 a.m.•1 views

pyrage 代码注入漏洞

pyrage is a Python binding for rage by the individual developer William Woodruff. A code injection vulnerability exists in pyrage versions 1.2.0, 1.2.1, and 1.2.2, which stems from a vulnerability in the Rust age crate on which it depends...

9.8CVSS9.3AI score0.00565EPSS

Exploits0References3

Positive Technologies•added 2024/12/18 12:0 a.m.•2 views

PT-2024-36790

Name of the Vulnerable Software and Affected Versions pyrage versions 1.2.0 through 1.2.2 Description The issue concerns the execution of arbitrary binaries due to malicious plugin names, recipients, or identities. This can occur when a plugin name containing a path separator is provided to the a...

9.8CVSS6AI score0.00565EPSS

Exploits0References28

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by