Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.25 views

Fedora 39 : python-pyramid (2023-70baf5e2fe)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-70baf5e2fe advisory. - Update to 2.0.2 - Fixes CVE-2023-40587 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

5.3CVSS5.4AI score0.00632EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/09/05 12:0 a.m.24 views

Fedora 38 : python-pyramid (2023-b213d84a16)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-b213d84a16 advisory. - Update to 2.0.2 - Fixes CVE-2023-40587 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

5.3CVSS5.4AI score0.00632EPSS
Exploits0References2
CVE
CVE
added 2023/08/25 8:46 p.m.99 views

CVE-2023-40587

Pyramid (Python web framework) versions 2.0.0–2.0.1 are affected by a directory-traversal vulnerability in a Pyramid static view that can disclose index.html located one directory above the static view path when accessed with Python 3.11. The issue stems from os.path.normpath behavior and affects...

5.3CVSS4.7AI score0.00632EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2023/08/25 8:46 p.m.30 views

CVE-2023-40587

Pyramid is an open source Python web framework. A path traversal vulnerability in Pyramid versions 2.0.0 and 2.0.1 impacts users of Python 3.11 that are using a Pyramid static view with a full filesystem path and have a index.html file that is located exactly one directory above the location of t...

5.3CVSS5.2AI score0.00632EPSS
Exploits0
Rows per page
Query Builder