Lucene search
K

6 matches found

F5 Networks
F5 Networks
added 2025/05/27 4:17 p.m.10 views

K000151520: Python vulnerabilities CVE-2018-20852, CVE-2014-4616, and CVE-2013-7040

Security Advisory Description CVE-2018-20852 http.cookiejar.DefaultPolicy.domainreturnok in Lib/http/cookiejar.py in Python before 3.7.3 does not correctly validate the domain: it can be tricked into sending existing cookies to the wrong server. An attacker may abuse this flaw by using a server...

5.9CVSS7.3AI score0.08125EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2013-7040

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Python 2.7 before 3.4 only uses the last eight bits of the prefix to randomize hash values, which causes it to compute hash values without restricting the abili...

4.3CVSS6.9AI score0.03255EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2014/06/09 12:0 a.m.37 views

Python 'Hash Collision' Denial of Service Vulnerability - Windows

Python is prone to a denial of service vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:python:python"; ifdescripti...

4.3CVSS9.2AI score0.03255EPSS
Exploits0References3
OSV
OSV
added 2014/05/19 2:55 p.m.11 views

CVE-2013-7040

Python 2.7 before 3.4 only uses the last eight bits of the prefix to randomize hash values, which causes it to compute hash values without restricting the ability to trigger hash collisions predictably and makes it easier for context-dependent attackers to cause a denial of service CPU consumptio...

9.2AI score
Exploits0References6
UbuntuCve
UbuntuCve
added 2014/05/19 2:55 p.m.28 views

CVE-2013-7040

Python 2.7 before 3.4 only uses the last eight bits of the prefix to randomize hash values, which causes it to compute hash values without restricting the ability to trigger hash collisions predictably and makes it easier for context-dependent attackers to cause a denial of service CPU consumptio...

4.3CVSS6.8AI score0.03255EPSS
Exploits0References2
Kaspersky
Kaspersky
added 2014/05/19 12:0 a.m.38 views

KLA10301 DoS vulnerability in Python

An incorrect hash realization was found in Python. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed input. Original advisories - Related products Python CVE list CVE-2013-7040 warning Solution Updat...

4.3CVSS6.9AI score0.03255EPSS
Exploits0References2
Rows per page
Query Builder