Lucene search
+L

70 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2020-27619

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Python 3 through 3.9.0, the Lib/test/multibytecodecsupport.py CJK codec tests call eval on content retrieved via HTTP. CVE-2020-27619 Note that Nessus relies...

9.8CVSS7AI score0.08314EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/09/22 12:0 a.m.15 views

GLSA-202409-12 : pypy, pypy3: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202409-12 pypy, pypy3: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in pypy. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block directly...

9.8CVSS7.2AI score0.08314EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2024/07/12 12:0 a.m.54 views

Ubuntu: Security Advisory (USN-6891-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.1AI score0.23293EPSS
Exploits27References2
Tenable Nessus
Tenable Nessus
added 2023/01/04 12:0 a.m.35 views

Amazon Linux 2 : python3 (ALAS-2021-1670)

The version of python3 installed on the remote host is prior to 3.7.10-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2021-1670 advisory. A flaw was found in Python. The built-in modules httplib and http.client included in Python 2 and Python 3, respectively ...

9.8CVSS7.2AI score0.08314EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2022/06/10 12:0 a.m.49 views

Amazon Linux AMI : python27 (ALAS-2022-1593)

The version of python27 installed on the remote host is prior to 2.7.18-2.142. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2022-1593 advisory. In Python3's Lib/test/multibytecodecsupport.py CJK codec tests call eval on content retrieved via HTTP. CVE-2020-2761...

9.8CVSS7.2AI score0.35963EPSS
Exploits4References13
Tenable Nessus
Tenable Nessus
added 2022/05/09 12:0 a.m.64 views

NewStart CGSL MAIN 6.02 : python3 Multiple Vulnerabilities (NS-SA-2022-0049)

The remote NewStart CGSL host, running version MAIN 6.02, has python3 packages installed that are affected by multiple vulnerabilities: - http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTT...

9.8CVSS8.4AI score0.35963EPSS
Exploits3References9
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.46 views

AlmaLinux 8 : python3 (ALSA-2021:1633)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2021:1633 advisory. - http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls...

9.8CVSS8.4AI score0.35963EPSS
Exploits3References5
Ubuntu
Ubuntu
added 2022/02/08 12:17 p.m.141 views

USN-4754-5: Python vulnerability

USN-4754-1 fixed vulnerabilities in Python. Because of a regression, a subsequent update removed the fix for CVE-2021-3177. This update reinstates the security fix for CVE-2021-3177 in Ubuntu 14.04 ESM. Original advisory details: It was discovered that Python incorrectly handled certain inputs. A...

9.8CVSS7.8AI score0.23293EPSS
Exploits1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.25 views

Mageia: Security Advisory (MGASA-2020-0477)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.8AI score0.08314EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/11/11 12:0 a.m.45 views

CentOS 8 : python27:2.7 (CESA-2021:4151)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:4151 advisory. - python: Unsafe use of eval on data retrieved via HTTP in the test suite CVE-2020-27619 - python-jinja2: ReDoS vulnerability in the urlize filter...

9.8CVSS7.8AI score0.35963EPSS
Exploits5References8
Tenable Nessus
Tenable Nessus
added 2021/11/11 12:0 a.m.75 views

RHEL 8 : python27:2.7 (RHSA-2021:4151)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:4151 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level...

9.8CVSS7.6AI score0.35963EPSS
Exploits5References19
RedHat Linux
RedHat Linux
added 2021/11/09 5:42 p.m.72 views

Moderate: Red Hat Security Advisory: python27:2.7 security update

An update for the python27:2.7 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7AI score0.35963EPSS
Exploits5References10
AlmaLinux
AlmaLinux
added 2021/11/09 8:24 a.m.68 views

Moderate: python27:2.7 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

9.8CVSS8.1AI score0.35963EPSS
Exploits5References9
OSV
OSV
added 2021/11/09 8:24 a.m.33 views

ALSA-2021:4151 Moderate: python27:2.7 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

9.8CVSS8AI score0.35963EPSS
Exploits5References9
OSV
OSV
added 2021/10/22 5:58 p.m.15 views

CLSA-2021-1634925483 Fixed CVEs in python: CVE-2018-20852, CVE-2020-8492, CVE-2020-26116, CVE-2020-27619

Add Oracle Linux distribution in platform.py - CVE-2018-20852: Prefix dot in domain for proper subdomain validation - CVE-2020-8492: Python allows an HTTP server to conduct Regular Expression Denial of Service ReDoS attacks against a client - CVE-2020-26116: http.client allows CRLF injection if...

9.8CVSS6.9AI score0.08314EPSS
Exploits3References1
IBM Security Bulletins
IBM Security Bulletins
added 2021/10/14 9:21 p.m.58 views

Security Bulletin: IBM Cognos Analytics with Watson 11.2.1 has addressed multiple vulnerabilities

Summary Security vulnerabilities have been addressed in IBM Cognos Analytics with Watson 11.2.1 Vulnerability Details CVEID: CVE-2017-12620 DESCRIPTION: Apache OpenNLP could allow a remote attacker to obtain sensitive information, caused by an XXE attack when loading models or dictionaries that...

9.8CVSS10.6AI score0.48019EPSS
Exploits11Affected Software1
OpenVAS
OpenVAS
added 2021/09/11 12:0 a.m.23 views

Python < 3.6.13, 3.7.x < 3.7.10, 3.8.x < 3.8.7, 3.9.x < 3.9.1 Python Issue (bpo-41944) - Mac OS X

Python is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:python:python";...

9.8CVSS10AI score0.08314EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/09/11 12:0 a.m.24 views

Python < 3.6.13, 3.7.x < 3.7.10, 3.8.x < 3.8.7, 3.9.x < 3.9.1 Python Issue (bpo-41944) - Linux

Python is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:python:python";...

9.8CVSS10AI score0.08314EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/09/11 12:0 a.m.25 views

Python < 3.6.13, 3.7.x < 3.7.10, 3.8.x < 3.8.7, 3.9.x < 3.9.1 Python Issue (bpo-41944) - Windows

Python is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:python:python";...

9.8CVSS10AI score0.08314EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2021/08/24 1:6 p.m.93 views

Moderate: Red Hat Security Advisory: python27 security update

An update for python27-babel, python27-python, python27-python-jinja2, and python27-python-pygments is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, whi...

9.8CVSS7.2AI score0.35963EPSS
Exploits5References9
Rows per page
Query Builder