CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

279 matches found

Tenable Nessus•added 2023/09/30 12:0 a.m.•20 views

Debian dla-3590 : python-renderpm - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3590 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3590-1 [email protected]...

9.8CVSS8.5AI score0.16839EPSS

Exploits2References8

Debian•added 2023/09/29 7:57 p.m.•23 views

[SECURITY] [DLA 3590-1] python-reportlab security update

Debian LTS Advisory DLA-3590-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin September 29, 2023 https://wiki.debian.org/LTS Package : python-reportlab Version : 3.5.13-1+deb10u2 CVE ID : CVE-2019-19450 CVE-2020-28463 Security issues were discovered in...

9.8CVSS7.6AI score0.16839EPSS

Exploits2

RedhatCVE•added 2023/09/22 4:54 a.m.•33 views

CVE-2019-19450

A code injection vulnerability was found in python-reportlab that may allow an attacker to execute code while parsing a unichar element attribute. An application that uses python-reportlab to parse untrusted input files may be vulnerable and could allow remote code execution. Mitigation Mitigatio...

9.8CVSS9.7AI score0.16839EPSS

Exploits1References3

SUSE CVE•added 2023/09/22 2:34 a.m.•1 views

SUSE CVE-2019-19450

paraparser in ReportLab before 3.5.31 allows remote code execution because startunichar in paraparser.py evaluates untrusted user input in a unichar element in a crafted XML document with 'unichar code="' followed by arbitrary Python code, a similar issue to CVE-2019-17626...

7.7CVSS8.2AI score0.09484EPSS

Exploits0References5

vulnersOsv•added 2023/09/20 3:30 p.m.•0 views

bookscrape (>=0.0.1.dev1 <=0.0.2b7), codeforlife-portal (>=1.1.1 <=2.28.1) +53 more potentially affected by CVE-2019-19450 via reportlab (>=3.1.44 <=3.5.26)

reportlab PYPI version =3.1.44, =0.0.1.dev1, =1.1.1, =0.7.0, =0.1.0, =0.0.2, =1.1.0, =2.7.0, =2.3.0.18073018, =2.3.0.18070609, =2.3.0.18070422, =0.1.0, =0.733.0, =0.736.0 and more Source cves: CVE-2019-19450 Source advisory: OSV:GHSA-PJ98-2XF6-CFF5...

9.8CVSS7.2AI score0.09484EPSS

Exploits0

OSV•added 2023/09/20 3:30 p.m.•23 views

GHSA-PJ98-2XF6-CFF5 ReportLab vulnerable to remote code execution via paraparser

9.8CVSS9.9AI score0.09484EPSS

Exploits0References8

Github Security Blog•added 2023/09/20 3:30 p.m.•27 views

ReportLab vulnerable to remote code execution via paraparser

9.8CVSS7.9AI score0.09484EPSS

Exploits0References8Affected Software1

NVD•added 2023/09/20 2:15 p.m.•21 views

CVE-2019-19450

9.8CVSS9.8AI score0.09484EPSS

Exploits0References7

OSV•added 2023/09/20 2:15 p.m.•2 views

CVE-2019-19450

9.8CVSS9.7AI score

Exploits0References7

OSV•added 2023/09/20 2:15 p.m.•1 views

DEBIAN-CVE-2019-19450

9.8CVSS9.4AI score0.09484EPSS

Exploits0References1

Prion•added 2023/09/20 2:15 p.m.•17 views

Remote code execution

7.5CVSS9.6AI score0.16839EPSS

Exploits1References3Affected Software2

UbuntuCve•added 2023/09/20 2:15 p.m.•28 views

CVE-2019-19450

9.8CVSS7.8AI score0.09484EPSS

Exploits0References3

OSV•added 2023/09/20 2:15 p.m.•0 views

UBUNTU-CVE-2019-19450

9.8CVSS6.5AI score0.09484EPSS

Exploits0References4

CNNVD•added 2023/09/20 12:0 a.m.•1 views

ReportLab Security Breach

ReportLab is an open source engine for creating data-driven PDF documents and custom vector graphics from ReportLab Denmark. A security vulnerability exists in ReportLab versions prior to 3.5.31, which stems from a remote code execution allowed by paraparser, where startunichar in paraparser.py...

9.8CVSS7.9AI score0.09484EPSS

Exploits0References5

CVE•added 2023/09/20 12:0 a.m.•169 views

CVE-2019-19450

CVE-2019-19450 affects the Python library python-reportlab (paraparser.py). A crafted XML document can cause remote code execution because start_unichar evaluates untrusted input in a element. Impact is high (as per CVSS in the entry). Remediation is to upgrade to a version where the issue is fi...

9.8CVSS9.7AI score0.09484EPSS

Exploits0References7Affected Software1

Debian CVE•added 2023/09/20 12:0 a.m.•34 views

CVE-2019-19450

9.8CVSS10AI score0.09484EPSS

Exploits0

Cvelist•added 2023/09/20 12:0 a.m.•16 views

CVE-2019-19450

9.9AI score0.09484EPSS

Exploits0References5

Positive Technologies•added 2023/09/20 12:0 a.m.•2 views

PT-2023-6316 · Reportlab +6 · Reportlab +6

Name of the Vulnerable Software and Affected Versions: ReportLab versions prior to 3.5.31 Description: The issue is related to the start unichar function in paraparser.py, which incorrectly processes XML documents. This allows a remote attacker to execute arbitrary code by crafting a malicious XM...

10CVSS8.5AI score0.28648EPSS

Exploits8References56

OSV•added 2023/07/29 11:5 a.m.•3 views

OESA-2023-1456 python-reportlab security update

The ReportLab Toolkit. An Open Source Python library for generating PDFs and graphics. Security Fixes: Reportlab up to v3.6.12 allows attackers to execute arbitrary code via supplying a crafted PDF file.CVE-2023-33733...

7.8CVSS7.9AI score0.28648EPSS

Exploits6References2

OpenVAS•added 2023/07/06 12:0 a.m.•18 views

Fedora: Security Advisory for python-reportlab (FEDORA-2023-3b82f4aa86)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.28648EPSS

Exploits6References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by