Lucene search
K

669 matches found

Redos
Redos
added 2026/06/23 12:0 a.m.5 views

ROS-20260623-73-0042

The vulnerability of the bytes.decode function in the CPython interpreter relates to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

9.1CVSS6.2AI score0.00579EPSS
Exploits0
Redos
Redos
added 2026/06/23 12:0 a.m.5 views

ROS-20260623-73-0043

The vulnerability of the bytes.decode function in the CPython interpreter relates to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

9.1CVSS6.2AI score0.00579EPSS
Exploits0
Redos
Redos
added 2026/06/23 12:0 a.m.6 views

ROS-20260623-73-0044

The vulnerability of the bytes.decode function in the CPython interpreter relates to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

9.1CVSS6.2AI score0.00579EPSS
Exploits0
Redos
Redos
added 2026/06/23 12:0 a.m.6 views

ROS-20260623-73-0045

The vulnerability of the bytes.decode function in the CPython interpreter relates to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

9.1CVSS6.2AI score0.00579EPSS
Exploits0
Redos
Redos
added 2026/06/23 12:0 a.m.5 views

ROS-20260623-73-0046

The vulnerability of the bytes.decode function in the CPython interpreter relates to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

9.1CVSS6.2AI score0.00579EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.2 views

The vulnerability in the debugging function of the CPython interpreter allows attackers to circumvent security restrictions.

The vulnerability of the debugging function in the CPython interpreter relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to circumvent security restrictions...

5.6CVSS6.2AI score0.00132EPSS
Exploits0References7Affected Software2
Tenable Nessus
Tenable Nessus
added 2026/06/03 12:0 a.m.8 views

RockyLinux 10 : python3.12 (RLSA-2026:19064)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:19064 advisory. expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing CVE-2025-59375...

9.1CVSS7.2AI score0.01279EPSS
Exploits1References25
Tenable Nessus
Tenable Nessus
added 2026/05/30 12:0 a.m.12 views

RockyLinux 9 : python3.14 (RLSA-2026:19176)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:19176 advisory. cpython: wsgiref.headers.Headers allows header newline injection in Python CVE-2026-0865 cpython: CPython: Logging Bypass in Legacy .pyc File Handling...

9.1CVSS7.6AI score0.00621EPSS
Exploits0References19
OSV
OSV
added 2026/05/29 4:3 p.m.19 views

RLSA-2026:19064 Important: python3.12 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

8.1CVSS7.7AI score0.01279EPSS
Exploits1References13
Tenable Nessus
Tenable Nessus
added 2026/05/28 12:0 a.m.13 views

RockyLinux 9 : python3.12 (RLSA-2026:19177)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:19177 advisory. expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing CVE-2025-59375...

9.1CVSS7.2AI score0.01279EPSS
Exploits1References25
Tenable Nessus
Tenable Nessus
added 2026/05/22 12:0 a.m.12 views

RockyLinux 8 : python3 (RLSA-2026:1631)

The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:1631 advisory. cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service CVE-2025-12084 Tenable has extracted the preceding description block...

6.3CVSS6.8AI score0.00708EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/21 2:47 a.m.22 views

SUSE CVE-2024-0397

A defect was discovered in the Python “ssl” module where there is a memory race condition with the ssl.SSLContext methods “certstorestats” and “getcacerts”. The race condition can be triggered if the methods are called at the same time as certificates are loaded into the SSLContext, such as durin...

4.8CVSS6.8AI score0.00804EPSS
Exploits0References22
RedHat Linux
RedHat Linux
added 2026/05/19 6:28 p.m.9 views

cpython: CPython: Logging Bypass in Legacy .pyc File Handling

A flaw was found in CPython. This vulnerability allows a local user with low privileges to bypass security auditing mechanisms. The issue occurs because the SourcelessFileLoader component, responsible for handling older Python compiled files .pyc, does not properly trigger system audit events. Th...

5.7CVSS7.2AI score0.00202EPSS
Exploits0References9
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.11 views

CPython 代码问题漏洞

CPython is a Python interpreter implemented in C language by the Python Foundation. CPython has code vulnerabilities, which originate from the ftpcp function in Lib/ftplib.py. These vulnerabilities could allow attackers to control IP addresses and ports...

5.9CVSS5.9AI score0.00476EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.9 views

CPython 安全特征问题漏洞

CPython is a Python interpreter implemented in C language by the Python Foundation. CPython has a security feature vulnerability, which stems from insufficient entropy in Expat hash flood protection mechanisms. This vulnerability may allow specially crafted XML documents to trigger a hash flood...

9.8CVSS5.8AI score0.0079EPSS
Exploits0References1
Redos
Redos
added 2026/05/05 12:0 a.m.10 views

ROS-20260505-73-0016

A vulnerability in the ElementDeclHandler component of the Python Programming Language Interpreter CPython is related to uncontrolled recursion. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS7.3AI score0.00621EPSS
Exploits0
Redos
Redos
added 2026/05/05 12:0 a.m.8 views

ROS-20260505-73-0027

A vulnerability in the appendChild and clearidcache functions of the Python programming language interpreter CPython is related to algorithmic complexity. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.3CVSS7.1AI score0.00708EPSS
Exploits0
Redos
Redos
added 2026/05/05 12:0 a.m.10 views

ROS-20260505-73-0072

A vulnerability in the tarfile module of the Python programming language interpreter CPython is related to incorrect parsing of the file header. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS6.8AI score0.02203EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2026/04/29 12:0 a.m.9 views

AlmaLinux 8 : python3.12 (ALSA-2026:10950)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:10950 advisory. expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing CVE-2025-59375...

9.1CVSS7AI score0.01279EPSS
Exploits1References13
Tenable Nessus
Tenable Nessus
added 2026/04/29 12:0 a.m.7 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: python3 (UTSA-2026-015069)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-015069 advisory. There is a defect in the CPython tarfile module affecting the TarFile extraction and entry enumeration APIs. The tar implementation would process tar archives with...

7.5CVSS6.8AI score0.00611EPSS
Exploits0References3
Rows per page
Query Builder