Lucene search
+L

13 matches found

vulnersOsv
vulnersOsv
added 2021/02/17 7:50 p.m.5 views

xtlib (>=0.0.176 <=0.0.996) potentially affected by CVE-2019-16328 via rpyc (=4.1.0)

rpyc PYPI version =4.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on rpyc and may be impacted: - xtlib =0.0.176, =0.0.996 Source cves: CVE-2019-16328 Source advisory: OSV:GHSA-PJ4G-4488-WMXM...

7.5CVSS7.1AI score0.13049EPSS
Exploits2
OSV
OSV
added 2021/02/17 7:50 p.m.2 views

GHSA-PJ4G-4488-WMXM Dynamic modification of RPyC service due to missing security check

Impact Version 4.1.0 of RPyC has a vulnerability that affects custom RPyC services making it susceptible to authenticated remote attacks. Patches Git commits between September 2018 and October 2019 and version 4.1.0 are vulnerable. Use a version of RPyC that is not affected. Workarounds The commi...

8.5CVSS6.4AI score0.13049EPSS
Exploits2References7
Github Security Blog
Github Security Blog
added 2021/02/17 7:50 p.m.209 views

Dynamic modification of RPyC service due to missing security check

Impact Version 4.1.0 of RPyC has a vulnerability that affects custom RPyC services making it susceptible to authenticated remote attacks. Patches Git commits between September 2018 and October 2019 and version 4.1.0 are vulnerable. Use a version of RPyC that is not affected. Workarounds The commi...

7.5CVSS0.4AI score0.13049EPSS
Exploits2References7Affected Software1
Circl
Circl
added 2021/02/16 11:23 p.m.17 views

CVE-2019-16328

creationtimestamp| type| source ---|---|--- 2021-02-16 23:23:57+00:00| published-proof-of-concept| https://github.com/tomerfiliba-org/rpyc/security/advisories/GHSA-pj4g-4488-wmxm 2023-06-14 22:53:56+00:00| seen|...

7.5CVSS7.1AI score0.13049EPSS
Exploits2References2
OPENSUSE Linux
OPENSUSE Linux
added 2020/06/03 12:0 a.m.76 views

Security update for python-rpyc (moderate)

openSUSE Security Update: Security update for python-rpyc Announcement ID: openSUSE-SU-2020:0763-1 Rating: moderate References: 1152987 Cross-References: CVE-2019-16328 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This upda...

7.5CVSS8AI score0.13049EPSS
Exploits2References1
Tenable Nessus
Tenable Nessus
added 2020/05/26 12:0 a.m.36 views

openSUSE Security Update : python-rpyc (openSUSE-2020-685)

This update for python-rpyc to 4.1.5 fixes the following issues : Security issue fixed : - CVE-2019-16328: Fixed a missing protocol security check that could have led to code execution boo1152987. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extract...

7.5CVSS8AI score0.13049EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2020/05/23 12:0 a.m.27 views

openSUSE: Security Advisory for python-rpyc (openSUSE-SU-2020:0685-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.7AI score0.13049EPSS
Exploits2References2
OSV
OSV
added 2020/05/22 4:17 p.m.4 views

OPENSUSE-SU-2020:0685-1 Security update for python-rpyc

This update for python-rpyc to 4.1.5 fixes the following issues: Security issue fixed: - CVE-2019-16328: Fixed a missing protocol security check that could have led to code execution boo1152987...

7.5CVSS7.7AI score0.13049EPSS
Exploits2References3
NVD
NVD
added 2019/10/03 8:15 p.m.24 views

CVE-2019-16328

In RPyC 4.1.x through 4.1.1, a remote attacker can dynamically modify object attributes to construct a remote procedure call that executes code for an RPyC service with default configuration settings...

7.5CVSS7.5AI score0.13049EPSS
Exploits2References4
OSV
OSV
added 2019/10/03 8:15 p.m.15 views

CVE-2019-16328

In RPyC 4.1.x through 4.1.1, a remote attacker can dynamically modify object attributes to construct a remote procedure call that executes code for an RPyC service with default configuration settings...

7.5CVSS7.5AI score
Exploits0References4
UbuntuCve
UbuntuCve
added 2019/10/03 8:15 p.m.47 views

CVE-2019-16328

In RPyC 4.1.x through 4.1.1, a remote attacker can dynamically modify object attributes to construct a remote procedure call that executes code for an RPyC service with default configuration settings...

7.5CVSS7.2AI score0.13049EPSS
Exploits2References1
vulnersOsv
vulnersOsv
added 2019/10/03 8:15 p.m.4 views

xtlib (>=0.0.176 <=0.0.996) potentially affected by CVE-2019-16328 via rpyc (=4.1.0)

rpyc PYPI version =4.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on rpyc and may be impacted: - xtlib =0.0.176, =0.0.996 Source cves: CVE-2019-16328 Source advisory: OSV:PYSEC-2019-118...

7.5CVSS7.1AI score0.13049EPSS
Exploits2
CVE
CVE
added 2019/10/03 7:51 p.m.222 views

CVE-2019-16328

CVE-2019-16328 affects RPyC 4.1.0–4.1.1 where a missing protocol security check allowed a remote attacker to construct a remote procedure call that could execute code in a custom RPyC service. OpenSUSE advisories confirm the issue is fixed in python-rpyc 4.1.5 (openSUSE-SU-2020:0763-1) and cite a...

7.5CVSS7.5AI score0.13049EPSS
Exploits2References4Affected Software1
Rows per page
Query Builder