Lucene search
+L

28 matches found

SUSE CVE
SUSE CVE
added 2023/04/20 2:6 a.m.3 views

SUSE CVE-2023-27043

The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is...

5.3CVSS6.9AI score0.02527EPSS
Exploits1References21
OSV
OSV
added 2023/04/19 12:15 a.m.2 views

ALPINE-CVE-2023-27043

The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is...

5.3CVSS6.8AI score0.02527EPSS
Exploits1References1
OSV
OSV
added 2023/04/19 12:15 a.m.2 views

DEBIAN-CVE-2023-27043

The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is...

5.3CVSS6.4AI score0.02527EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2023/04/19 12:15 a.m.116 views

CVE-2023-27043

The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is...

5.3CVSS6.7AI score0.02527EPSS
Exploits1References8
OSV
OSV
added 2023/04/18 12:0 a.m.18 views

CVE-2023-27043

The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is...

5.3CVSS5.5AI score0.02527EPSS
Exploits1References48
Debian CVE
Debian CVE
added 2023/04/18 12:0 a.m.50 views

CVE-2023-27043

The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is...

5.3CVSS6.3AI score0.02527EPSS
Exploits1
CVE
CVE
added 2023/04/18 12:0 a.m.1285 views

CVE-2023-27043

CVE-2023-27043 : The Python email module (email/_parseaddr.py) misparses e-mail addresses with a special character, causing the addr-spec to be taken from the wrong RFC2822 header field. This can allow bypassing domain-based signup protections (e.g., restricting to @company.example.com). The Astr...

5.3CVSS5.8AI score0.02527EPSS
Exploits1References46Affected Software1
OSV
OSV
added 2023/04/18 12:0 a.m.128 views

PSF-2023-2 Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple

The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is...

5.3CVSS6AI score0.02527EPSS
Exploits1References1
Rows per page
Query Builder