14 matches found
python311-suds-1.2.0-2.4 on GA media (moderate)
python311-suds-1.2.0-2.4 on GA media Announcement ID: openSUSE-SU-2025:15105-1 Rating: moderate Cross-References: CVE-2013-2217 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...
Linux Distros Unpatched Vulnerability : CVE-2013-2217
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cache.py in Suds 0.4, when tempdir is set to None, allows local users to redirect SOAP queries and possibly have other unspecified impact via a symlink attack o...
RHEL 7 : python-suds (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - python-suds: Insecure temporary directory use when initializing file-based URL cache CVE-2013-2217 Note that Nessus...
RHEL 6 : python-suds (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - python-suds: Insecure temporary directory use when initializing file-based URL cache CVE-2013-2217 Note that Nessus...
FreeBSD : py-suds -- vulnerable to symlink attacks (b31f7029-817c-4c1f-b7d3-252de5283393)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the b31f7029-817c-4c1f-b7d3-252de5283393 advisory. - cache.py in Suds 0.4, when tempdir is set to None, allows local users to redirect SOAP queries and...
Mageia: Security Advisory (MGASA-2013-0224)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2016:2704-1 Security update for python-suds-jurko
This update for python-suds-jurko fixes the following issues: - CVE-2013-2217: A temporary directory was used in an insecure fashion when initializing file-based URL cache. bsc827568...
openSUSE Security Update : python-suds-jurko (openSUSE-2016-1178)
This update for python-suds-jurko fixes the following issues : - CVE-2013-2217: A temporary directory was used in an insecure fashion when initializing file-based URL cache. boo827568 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
openSUSE Security Update : python-suds (openSUSE-SU-2013:1208-1)
Python SUDS was updated to create a create random cache tempdir to avoid other local user access bnc827568 CVE-2013-2217 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-590. The...
CVE-2013-2217
cache.py in Suds 0.4, when tempdir is set to None, allows local users to redirect SOAP queries and possibly have other unspecified impact via a symlink attack on a cache file with a predictable name in /tmp/suds/...
dfnclient (>=0.0.1 <=0.4.6), django-afip (>=1.0.2 <=2.2.1) +2 more potentially affected by CVE-2013-2217 via suds-py3 (>=1.0.0.0 <=1.4.1.0)
suds-py3 PYPI version =1.0.0.0, =0.0.1, =1.0.2, =0.9.0, =0.0.1, =0.0.8 Source cves: CVE-2013-2217 Source advisory: OSV:PYSEC-2013-33...
CVE-2013-2217
The CVE-2013-2217 issue affects Suds 0.4’s cache.py: when tempdir is None, a symlink attack in a predictable /tmp/suds/ cache file enables local users to redirect SOAP queries and potentially other impact. OpenSUSE and related advisories reference an insecure temporary-directory usage in the file...
CVE-2013-2217
cache.py in Suds 0.4, when tempdir is set to None, allows local users to redirect SOAP queries and possibly have other unspecified impact via a symlink attack on a cache file with a predictable name in /tmp/suds/...
Updated python-suds package fixes security vulnerability
An insecure temporary directory use flaw was found in the way python-suds performed initialization of its internal file-based URL cache predictable location was used for directory to store the cached files. A local attacker could use this flaw to conduct symbolic link attacks, possibly leading to...