Lucene search
K

69 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.5 views

Siemens SIMATIC S7-1500 Improper Limitation of a Pathname to a Restricted Directory (CVE-2019-9948)

urllib in Python 2.x through 2.7.16 supports the localfile: scheme, which makes it easier for remote attackers to bypass protection mechanisms that blacklist file: URIs, as demonstrated by triggering a urllib.urlopen'localfile:///etc/passwd' call. This plugin only works with Tenable.ot. Please...

9.1CVSS6.8AI score0.11844EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2019-9948

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - urllib in Python 2.x through 2.7.16 supports the localfile: scheme, which makes it easier for remote attackers to bypass protection mechanisms that blacklist...

9.1CVSS6.8AI score0.11844EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/07/22 12:0 a.m.24 views

Photon OS 2.0: Python2 PHSA-2019-2.0-0146

An update of the python2 package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-2.0-0146. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

9.1CVSS7.7AI score0.11844EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/07/12 12:0 a.m.52 views

Ubuntu: Security Advisory (USN-6891-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.1AI score0.23293EPSS
Exploits27References2
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.36 views

RHEL 6 / 7 : rh-python36-python (RHSA-2019:3725)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:3725 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high leve...

9.1CVSS6.8AI score0.20743EPSS
Exploits7References24
Tenable Nessus
Tenable Nessus
added 2024/04/27 12:0 a.m.21 views

RHEL 6 / 7 : python27-python (RHSA-2019:1700)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:1700 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high leve...

9.8CVSS7.3AI score0.11844EPSS
Exploits1References8
F5 Networks
F5 Networks
added 2023/02/21 7:58 p.m.73 views

K28622040: Python vulnerability CVE-2019-9948

Security Advisory Description urllib in Python 2.x through 2.7.16 supports the localfile: scheme, which makes it easier for remote attackers to bypass protection mechanisms that blacklist file: URIs, as demonstrated by triggering a urllib.urlopen'localfile:///etc/passwd' call. CVE-2019-9948 Impac...

9.1CVSS7.7AI score0.11844EPSS
Exploits1Affected Software4
SUSE CVE
SUSE CVE
added 2023/02/15 4:13 a.m.6 views

SUSE CVE-2019-9948

urllib in Python 2.x through 2.7.16 supports the localfile: scheme, which makes it easier for remote attackers to bypass protection mechanisms that blacklist file: URIs, as demonstrated by triggering a urllib.urlopen'localfile:///etc/passwd' call...

3.3CVSS9.3AI score0.11844EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2022/02/01 12:0 a.m.124 views

F5 Networks BIG-IP : Python vulnerability (K28622040)

The version of F5 Networks BIG-IP installed on the remote host is prior to 13.1.5 / 14.1.4.5 / 15.1.4.1 / 16.1.2 / 17.0.0. It is, therefore, affected by a vulnerability as referenced in the K28622040 advisory. - urllib in Python 2.x through 2.7.16 supports the localfile: scheme, which makes it...

9.1CVSS7AI score0.11844EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.20 views

Mageia: Security Advisory (MGASA-2019-0165)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS9.7AI score0.11844EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.26 views

Mageia: Security Advisory (MGASA-2019-0318)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.11844EPSS
Exploits4References7
OpenVAS
OpenVAS
added 2021/09/12 12:0 a.m.16 views

Python 2.x < 2.7.17, 3.5.x < 3.5.8, 3.6.x < 3.6.9, 3.7.x < 3.7.4 Protection Bypass Vulnerability (bpo-35907) - Windows

Python is prone to a protection bypass vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:python:python"; ifdescripti...

9.1CVSS9.6AI score0.11844EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2019:14018-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.3AI score0.11844EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2019:0972-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.9AI score0.11844EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2019:1439-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.3AI score0.11844EPSS
Exploits1References5
IBM Security Bulletins
IBM Security Bulletins
added 2020/09/16 4:2 p.m.58 views

Security Bulletin: [All] Python (Publicly disclosed vulnerability)

Summary Vulnerabilities in Open Source Python affect IBM Tivoli Application Dependency Discovery Manager. Vulnerability Details CVEID: CVE-2019-9948 DESCRIPTION: Python could allow a remote attacker to bypass security restrictions, caused by improper input validation by the urllib. By sending a...

9.1CVSS0.5AI score0.11844EPSS
Exploits2Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/08/24 12:0 a.m.34 views

Debian DLA-2337-1 : python2.7 security update

Multiple vulnerabilities were discovered in Python2.7, an interactive high-level object-oriented language. CVE-2018-20852 By using a malicious server an attacker might steal cookies that are meant for other domains. CVE-2019-5010 NULL pointer dereference using a specially crafted X509 certificate...

9.8CVSS7.2AI score0.20743EPSS
Exploits5References12
Debian
Debian
added 2020/08/22 2:48 p.m.130 views

[SECURITY] [DLA 2337-1] python2.7 security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2337-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz August 22, 2020 https://wiki.debian.org/LTS -...

9.8CVSS8.7AI score0.20743EPSS
Exploits5
Debian
Debian
added 2020/07/15 10:0 a.m.92 views

[SECURITY] [DLA 2280-1] python3.5 security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2280-1 [email protected] https://www.debian.org/lts/security/ July 15, 2020 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package :...

9.8CVSS9.3AI score0.20743EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2020/04/14 12:0 a.m.56 views

RHEL 7 : python (RHSA-2020:1462)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1462 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level...

9.1CVSS7.3AI score0.11844EPSS
Exploits3References11
Rows per page
Query Builder