Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2024/07/25 12:0 a.m.12 views

openSUSE 15 Security Update : python-sentry-sdk (openSUSE-SU-2024:0214-1)

The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2024:0214-1 advisory. - CVE-2024-40647: Do not leak environment variables to child processes. bsc1228128 Tenable has extracted the preceding description block directly from th...

5.3CVSS5.5AI score0.00198EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/07/24 12:0 a.m.7 views

openSUSE Security Advisory (openSUSE-SU-2024:0214-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS5.3AI score0.00198EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2024/07/18 5:18 p.m.12 views

a-simple-llm-kit (>=0.3.0 <=0.4.2), aa-rag (>=0.1.0 <=0.4.3) +4123 more potentially affected by CVE-2024-40647 via sentry-sdk (>=2.0.0rc4 <=2.7.1)

sentry-sdk PYPI version =2.0.0rc4, =0.3.0, =0.1.0, =1.1.3, =0.3.4, =0.1.1.dev1, =0.1.1.dev1, =0.1.1.dev1, =0.1.1.dev1, =0.1.0, =0.2.0a0, =1.0.5, =1.1.15 - abilian-sbe-next =1.0.4 and more Source cves: CVE-2024-40647 Source advisory: OSV:GHSA-G92J-QHMH-64V2...

5.3CVSS6AI score0.00198EPSS
Exploits0
NVD
NVD
added 2024/07/18 5:15 p.m.23 views

CVE-2024-40647

sentry-sdk is the official Python SDK for Sentry.io. A bug in Sentry's Python SDK 2.8.0 allows the environment variables to be passed to subprocesses despite the env= setting. In Python's subprocess calls, all environment variables are passed to subprocesses by default. However, if you specifical...

5.3CVSS0.00198EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2024/07/18 4:51 p.m.41 views

CVE-2024-40647

sentry-sdk is the official Python SDK for Sentry.io. A bug in Sentry's Python SDK 2.8.0 allows the environment variables to be passed to subprocesses despite the env= setting. In Python's subprocess calls, all environment variables are passed to subprocesses by default. However, if you specifical...

5.3CVSS5.2AI score0.00198EPSS
Exploits0
OSV
OSV
added 2024/07/18 4:51 p.m.14 views

CVE-2024-40647 Unintentional exposure of environment variables to subprocesses in sentry-sdk

sentry-sdk is the official Python SDK for Sentry.io. A bug in Sentry's Python SDK 2.8.0 allows the environment variables to be passed to subprocesses despite the env= setting. In Python's subprocess calls, all environment variables are passed to subprocesses by default. However, if you specifical...

5.3CVSS6.4AI score0.00198EPSS
Exploits0References10
Cvelist
Cvelist
added 2024/07/18 4:51 p.m.43 views

CVE-2024-40647 Unintentional exposure of environment variables to subprocesses in sentry-sdk

sentry-sdk is the official Python SDK for Sentry.io. A bug in Sentry's Python SDK 2.8.0 allows the environment variables to be passed to subprocesses despite the env= setting. In Python's subprocess calls, all environment variables are passed to subprocesses by default. However, if you specifical...

5.3CVSS0.00198EPSS
Exploits0References7
Rows per page
Query Builder