Security Bulletin: Maximo AI Service uses azure-core 1.37.0 and setuptools 75.8.0 which are vulnerable to CVE-2026-21226 and CVE-2025-47273.

Summary Maximo AI Service uses azure-core 1.37.0 and setuptools 75.8.0 which are vulnerable to CVE-2026-21226 and CVE-2025-47273. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2026-21226 DESCRIPTION: Deserialization of untrusted da...

Astra Linux - уязвимость в python-setuptools

Setuptools is a package that allows users to download, build, install, upgrade, and uninstall Python packages. A path traversal vulnerability exists in Setuptools prior to version 78.1.1. An attacker could be allowed to write files to arbitrary locations on the file system with the permissions of...

FreeBSD : py-setuptools -- Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (690144e9-4f88-11f1-982e-00a098b42aeb)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 690144e9-4f88-11f1-982e-00a098b42aeb advisory. https://github.com/pypa/setuptools/security/advisories/GHSA-5rjg-fvgr-3xxf reports: setuptools is a...

ROOT-APP-PYPI-CVE-2024-6345 CVE-2024-6345 in rootio-setuptools - Patched by Root

Root has patched CVE-2024-6345 in the rootio-setuptools package for Root:PyPI. Multiple fixed versions available...

ROOT-APP-PYPI-CVE-2022-40897 CVE-2022-40897 in rootio-setuptools - Patched by Root

Root has patched CVE-2022-40897 in the rootio-setuptools package for Root:PyPI. Multiple fixed versions available...

ROOT-APP-PYPI-CVE-2025-47273 CVE-2025-47273 in rootio-setuptools - Patched by Root

Root has patched CVE-2025-47273 in the rootio-setuptools package for Root:PyPI. Multiple fixed versions available...

Astra Linux - уязвимость в python-setuptools

A vulnerability exists in the packageindex module of pypa/setuptools versions up to 69.1.1, allowing for remote code execution through its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are vulnerable t...

Astra Linux - уязвимость в python-setuptools

Python Packaging Authority PyPA setuptools before 65.5.1 allows remote attackers to cause a denial of service via HTML in a crafted package or custom PackageIndex page. There is a Regular Expression Denial of Service ReDoS in packageindex.py...

Security Bulletin: Vulnerability in setuptools affects IBM Netezza Appliance

Summary The setuptools package is used by IBM Netezza Appliance . IBM Netezza Appliance has addressed the applicable CVE CVE-2025-47273 Vulnerability Details CVEID:CVE-2025-47273 DESCRIPTION: setuptools is a package that allows users to download, build, install, upgrade, and uninstall Python...

Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to a path traversal in setuptools [CVE-2025-47273]

Summary M Watson Speech Services Cartridge is vulnerable to a path traversal in setuptools, due to an issue that allows users to download, build, install, upgrade, and uninstall Python packages CVE-2025-47273. Setuptools is used in our speech service runtimes. This vulnerabilitiy has been...

NewStart CGSL MAIN 6.06 : python3.11-setuptools Vulnerability (NS-SA-2025-0242)

The remote NewStart CGSL host, running version MAIN 6.06, has python3.11-setuptools packages installed that are affected by a vulnerability: - A vulnerability in the packageindex module of pypa/setuptools versions up to 69.1.1 allows for remote code execution via its download functions. These...

Security Bulletin: IBM Security Verify Directory (Container) is affected by a vulnerability in the setuptools package (CVE-2025-47273)

Summary A vulnerability in the setuptools package used by IBM Security Verify Directory Container has been addressed Vulnerability Details CVEID:CVE-2025-47273 DESCRIPTION: setuptools is a package that allows users to download, build, install, upgrade, and uninstall Python packages. A path...

Exploit for Path Traversal in Python Setuptools

HackTheBox - VariaType Machine Writeup !HTBhttps://img.shie...

Security Bulletin: Due to the use of Python setuptools IBM Foundationdb Operator is vulunerable for denial of service attack

Summary IBM Database Operator for FoundationDB contains Python setuptools internally CVE-2022-40897 Vulnerability Details CVEID:CVE-2022-40897 DESCRIPTION: Python Packaging Authority PyPA setuptools before 65.5.1 allows remote attackers to cause a denial of service via HTML in a crafted package o...

Exploit for Path Traversal in Python Setuptools

CVE-2025-47273: Path Traversal in setuptools.packageindex...

Exploit for Path Traversal in Python Setuptools

setuptools Path Traversal CVE-2025-47273 📖 Overview Proof...

ROS-20260310-73-0042

Vulnerability in python-setuptools related to incorrect path name restriction to a restricted directory. Exploitation of the vulnerability could allow a remote attacker to gain unauthorized access to protected information...

ROOT-OS-DEBIAN-13-CVE-2026-23949 CVE-2026-23949 in rootio-setuptools - Patched by Root

Root has patched CVE-2026-23949 in the rootio-setuptools package for Root:Debian:13. Multiple fixed versions available...

[SECURITY] [DLA 4471-1] debian-security-support update

Debian LTS Advisory DLA-4471-1 [email protected] https://www.debian.org/lts/security/ Santiago Ruano Rincón February 06, 2026 https://wiki.debian.org/LTS Package : debian-security-support Version : 1:11+2026.02.06 Debian Bug : 1117607 1119290 1124248 debian-security-support, the Debian...

Debian dla-4471 : debian-security-support - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-4471 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4471-1 [email protected] https://www.debian.org/lts/security/...