MiracleLinux 7 : python-setuptools-0.9.8-7.0.1.el7.AXS7 (AXSA:2024-9025:03)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-9025:03 advisory. CVE-2024-6345: modernize packageindex VCS handling CVEs: CVE-2024-6345 A vulnerability in the packageindex module of pypa/setuptools versions up to 69.1.1...

MiracleLinux 8 : python3.11-setuptools-65.5.1-3.el8_10 (AXSA:2024-8681:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8681:02 advisory. pypa/setuptools: Remote code execution via download functions in the packageindex module in pypa/setuptools CVE-2024-6345 Tenable has extracted the preceding...

MiracleLinux 9 : python3.12-setuptools-68.2.2-3.el9_4.1 (AXSA:2024-8684:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8684:02 advisory. pypa/setuptools: Remote code execution via download functions in the packageindex module in pypa/setuptools CVE-2024-6345 Tenable has extracted the preceding...

MiracleLinux 8 : python-setuptools-39.2.0-6.el8.1 (AXSA:2023-5166:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5166:01 advisory. pypa-setuptools: Regular Expression Denial of Service ReDoS in packageindex.py CVE-2022-40897 Tenable has extracted the preceding description block directly...

jaraco.context Has a Path Traversal Vulnerability

Summary There is a Zip Slip path traversal vulnerability in the jaraco.context package affecting setuptools as well, in jaraco.context.tarball function. The vulnerability may allow attackers to extract files outside the intended extraction directory when malicious tar archives are processed. The...

GHSA-58PV-8J8X-9VJ2 jaraco.context Has a Path Traversal Vulnerability

Summary There is a Zip Slip path traversal vulnerability in the jaraco.context package affecting setuptools as well, in jaraco.context.tarball function. The vulnerability may allow attackers to extract files outside the intended extraction directory when malicious tar archives are processed. The...

MiracleLinux 8 : python39:3.9 (AXSA:2025-10818:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10818:01 advisory. setuptools: Path Traversal Vulnerability in setuptools PackageIndex CVE-2025-47273 cpython: Cpython infinite loop when parsing a tarfile...

MiracleLinux 9 : python3.12-setuptools-68.2.2-5.el9_6 (AXSA:2025-10714:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10714:02 advisory. setuptools: Path Traversal Vulnerability in setuptools PackageIndex CVE-2025-47273 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : python3.11-setuptools-65.5.1-4.el9_6 (AXSA:2025-10739:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10739:02 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types...

MiracleLinux 7 : python-setuptools-0.9.8-7.0.2.el7.AXS7 (AXSA:2025-10851:04)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10851:04 advisory. CVE-2025-47273: fix path traversal vulnerability in PackageIndex CVEs: CVE-2025-47273 setuptools is a package that allows users to download, build, install,...

MiracleLinux 9 : fence-agents-4.10.0-86.el9_6.7 (AXSA:2025-10639:07)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10639:07 advisory. setuptools: Path Traversal Vulnerability in setuptools PackageIndex CVE-2025-47273 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : python-setuptools-39.2.0-9.el8_10 (AXSA:2025-10517:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10517:02 advisory. setuptools: Path Traversal Vulnerability in setuptools PackageIndex CVE-2025-47273 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : python3.11-setuptools-65.5.1-4.el8_10 (AXSA:2025-10503:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10503:01 advisory. setuptools: Path Traversal Vulnerability in setuptools PackageIndex CVE-2025-47273 Tenable has extracted the preceding description block directly from the...

MiracleLinux 7 : python3-setuptools-39.2.0-10.0.1.el7.AXS7 (AXSA:2025-10847:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10847:01 advisory. CVE-2025-47273: fix path traversal vulnerability in PackageIndex CVEs: CVE-2025-47273 setuptools is a package that allows users to download, build, install,...

MiracleLinux 8 : python3.12-setuptools-68.2.2-5.el8_10 (AXSA:2025-10501:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10501:01 advisory. setuptools: Path Traversal Vulnerability in setuptools PackageIndex CVE-2025-47273 Tenable has extracted the preceding description block directly from the...

MiracleLinux 7 : python3-setuptools-39.2.0-10.0.5.0.1.el7.AXS7 (AXSA:2025-11012:02)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2025-11012:02 advisory. CVE-2022-40897: fix Regular Expression Denial of Service ReDoS in packageindex.py CVE-2024-6345: fix remote code execution in packageindex module...

MiracleLinux 9 : python-setuptools-53.0.0-13.el9_6.1 (AXSA:2025-10622:03)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10622:03 advisory. setuptools: Path Traversal Vulnerability in setuptools PackageIndex CVE-2025-47273 Tenable has extracted the preceding description block directly from the...

CLSA-2025-1765801059 python-setuptools: Fix of 2 CVEs

CVE-2024-6345: fix code injection vulnerability in package download functions - CVE-2025-47273: fix path traversal in PackageIndex.download leading to arbitrary file write...

Splunk Enterprise 9.2.0 < 9.2.10, 9.3.0 < 9.3.8, 9.4.0 < 9.4.6, 10.0 < 10.0.2 (SVD-2025-1209)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2025-1209 advisory. - setuptools is a package that allows users to download, build, install, upgrade, and uninstall Python packages. A path travers...

Advisory ROSA-SA-2025-3090

Software: python-setuptools 0.9.8 OS: rosa-server79 unaffected versions = python-setuptools-0.9.8-7.0.3.res7 affected versions python-setuptools-0.9.8-7.0.3.res7 CVE-ID: CVE-2025-47273 BDU-ID: 2025-08604 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the setuptools project packaging simplification...