CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Ubuntu•added 2026/05/25 3:9 p.m.•5 views

USN-8301-1: SimpleEval vulnerability

Byambadalai Sumiya discovered that SimpleEval did not properly restrict attribute access and callback handling inside a sandbox. An attacker could possibly use this issue to execute arbitrary code...

9.8CVSS7.6AI score0.00052EPSS

OSV•added 2026/05/25 3:9 p.m.•3 views

USN-8301-1 simpleeval vulnerability

Byambadalai Sumiya discovered that SimpleEval did not properly restrict attribute access and callback handling inside a sandbox. An attacker could possibly use this issue to execute arbitrary code...

9.8CVSS7.6AI score0.00052EPSS

Debian•added 2026/04/21 2:18 p.m.•1 views

[SECURITY] [DLA 4543-1] simpleeval security update

Debian LTS Advisory DLA-4543-1 [email protected] https://www.debian.org/lts/security/ Santiago Ruano Rincón April 21, 2026 https://wiki.debian.org/LTS Package : simpleeval Version : 0.9.10-1+deb11u1 CVE ID : CVE-2026-32640 Debian Bug : 1130875 Byambadalai Sumiya discovered that...

Tenable Nessus•added 2026/04/21 12:0 a.m.•1 views

Debian dla-4543 : python3-simpleeval - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-4543 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4543-1 [email protected] https://www.debian.org/lts/security/...

Debian•added 2026/04/20 7:4 p.m.•2 views

Exploits0References4

[SECURITY] [DSA 6220-1] simpleeval security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6220-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 20, 2026 https://www.debian.org/security/faq -...

Tenable Nessus•added 2026/04/20 12:0 a.m.•0 views

Debian dsa-6220 : python3-simpleeval - security update

The remote Debian 12 / 13 host has a package installed that is affected by a vulnerability as referenced in the dsa-6220 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6220-1 [email protected] https://www.debian.org/security/...

OPENSUSE Linux•added 2026/03/25 12:0 a.m.•2 views

Exploits0References5

Security update for python-simpleeval (important)

openSUSE security update: security update for python-simpleeval ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20393-1 Rating: important References: bsc1259685 Cross-References: CVE-2026-32640 Affected Products: openSUSE Leap 16.0...

9.8CVSS5.8AI score0.00052EPSS

Exploits0References1

Veracode•added 2026/03/21 5:24 a.m.•2 views

Code Injection

SimpleEval is vulnerable to code injection. The vulnerability is due to objects leaking dangerous modules through to direct access inside the sandbox, where dangerous functions or modules could be accessed by passing them as callbacks to other safe functions to call...

9.8CVSS8.4AI score0.00052EPSS

Exploits0References3Affected Software1

OSV•added 2026/03/18 5:29 p.m.•2 views

OPENSUSE-SU-2026:20393-1 Security update for python-simpleeval

This update for python-simpleeval fixes the following issues: Changes in python-simpleeval: - CVE-2026-32640: Objects including modules can leak dangerous modules through to direct access inside the sandbox bsc1259685...

9.8CVSS5.9AI score0.00052EPSS

OPENSUSE Linux•added 2026/03/18 12:0 a.m.•1 views

Security update for python-simpleeval (important)

openSUSE Security Update: Security update for python-simpleeval Announcement ID: openSUSE-SU-2026:0086-1 Rating: important References: 1259685 Cross-References: CVE-2026-32640 Affected Products: openSUSE Backports SLE-15-SP6 An update that fixes one vulnerability is now available. Description: Th...

9.8CVSS5.8AI score0.00052EPSS

Exploits0References1

RedhatCVE•added 2026/03/17 9:49 a.m.•0 views

CVE-2026-32640

A flaw was found in the Python library, SimpleEval. A remote attacker could exploit this vulnerability by providing specially crafted input that allows dangerous modules or functions to be accessed outside of the intended sandbox environment. This could lead to arbitrary code execution within the...

9.8CVSS6.3AI score0.00052EPSS

Exploits0References4

SUSE CVE•added 2026/03/16 5:32 p.m.•2 views

SUSE CVE-2026-32640

SimpleEval is a library for adding evaluatable expressions into python projects. Prior to 1.0.5, objects including modules can leak dangerous modules through to direct access inside the sandbox. If the objects you've passed in as names to SimpleEval have modules or other disallowed / dangerous...

9.8CVSS5.8AI score0.00052EPSS

Exploits0References3

NVD•added 2026/03/16 2:19 p.m.•1 views

CVE-2026-32640

9.8CVSS0.00052EPSS

vulnersOsv•added 2026/03/16 2:19 p.m.•4 views

akurdyukov-tap-clickhouse (=0.0.1), asdjgasdghasdhjgasghd (=1.0.7) +81 more potentially affected by CVE-2026-32640 via simpleeval (>=0.9.1 <=1.0.4)

simpleeval PYPI version =0.9.1, =0.1.4, =0.1.0, =1.0.6, =0.0.5, =1.1.0, =0.1.3, =0.1.0, =0.3.0b1, =0.2.0, =0.1.0, =1.0.8 and more Source cves: CVE-2026-32640 Source advisory: OSV:PYSEC-2026-132...

9.8CVSS7.2AI score0.00052EPSS

OSV•added 2026/03/16 2:19 p.m.•2 views

DEBIAN-CVE-2026-32640

9.8CVSS8.4AI score0.00052EPSS

Exploits0References1

OSV•added 2026/03/16 2:19 p.m.•4 views

PYSEC-2026-132

9.8CVSS7.3AI score0.00052EPSS