9 matches found
Security Bulletin: IBM Cognos Analytics is affected by a security vulnerability in Python JSON Logger (CVE-2025-27607)
Summary There is a vulnerability in Python JSON Logger used by IBM Cognos Analytics CVE-2025-27607. This Security Bulletin relates only to the direct usage of third-party components by IBM Cognos Analytics, and not any nested dependencies within the product. Vulnerability Details...
CVE-2025-27607
A flaw was found in the Python JSON Logger library python-json-logger. In affected versions, python-json-logger was vulnerable to remote code execution RCE due to a missing dependency. This issue occurred because msgspec-python313-pre was deleted by the owner, leaving the name open to being claim...
CVE-2025-27607
Python JSON Logger is a JSON Formatter for Python Logging. Between 30 December 2024 and 4 March 2025 Python JSON Logger was vulnerable to RCE through a missing dependency. This occurred because msgspec-python313-pre was deleted by the owner leaving the name open to being claimed by a third party...
CVE-2025-27607
Python JSON Logger is a JSON Formatter for Python Logging. Between 30 December 2024 and 4 March 2025 Python JSON Logger was vulnerable to RCE through a missing dependency. This occurred because msgspec-python313-pre was deleted by the owner leaving the name open to being claimed by a third party...
backend-ai (=1.4.0), backend-ai-accelerator-cuda-open (>=24.9.5 <=26.4.4rc7) +38 more potentially affected by CVE-2025-27607 via python-json-logger (=3.2.1)
python-json-logger PYPI version =3.2.1 is affected by a known vulnerability. The following packages have a transitive dependency on python-json-logger and may be impacted: - backend-ai =1.4.0 - backend-ai-accelerator-cuda-open =24.9.5, =24.9.5, =24.9.5, =24.9.5, =25.13.0, =25.13.0, =25.13.0,...
CVE-2025-27607
creationtimestamp| type| source ---|---|--- 2025-03-07 16:35:20+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6850 2025-03-07 18:01:34+00:00| seen| Telegram/MKyyCJNfVvpUH0PEmhW7az9OPnbIUC-jF-3Mo1io2kFbkQ 2025-03-07 18:45:18+00:00| seen|...
CVE-2025-27607 Python JSON Logger has a Potential RCE via missing `msgspec-python313-pre` dependency
Python JSON Logger is a JSON Formatter for Python Logging. Between 30 December 2024 and 4 March 2025 Python JSON Logger was vulnerable to RCE through a missing dependency. This occurred because msgspec-python313-pre was deleted by the owner leaving the name open to being claimed by a third party...
CVE-2025-27607
Technical details are not publicly available in the provided connected documents; monitor for updates.
CVE-2025-27607
Python JSON Logger is a JSON Formatter for Python Logging. Between 30 December 2024 and 4 March 2025 Python JSON Logger was vulnerable to RCE through a missing dependency. This occurred because msgspec-python313-pre was deleted by the owner leaving the name open to being claimed by a third party...