Lucene search
K

9 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/07/25 11:47 p.m.13 views

Security Bulletin: IBM Cognos Analytics is affected by a security vulnerability in Python JSON Logger (CVE-2025-27607)

Summary There is a vulnerability in Python JSON Logger used by IBM Cognos Analytics CVE-2025-27607. This Security Bulletin relates only to the direct usage of third-party components by IBM Cognos Analytics, and not any nested dependencies within the product. Vulnerability Details...

8.8CVSS6.7AI score0.01543EPSS
Exploits1Affected Software1
RedhatCVE
RedhatCVE
added 2025/03/09 4:33 p.m.12 views

CVE-2025-27607

A flaw was found in the Python JSON Logger library python-json-logger. In affected versions, python-json-logger was vulnerable to remote code execution RCE due to a missing dependency. This issue occurred because msgspec-python313-pre was deleted by the owner, leaving the name open to being claim...

8.8CVSS9AI score0.01543EPSS
Exploits1References6
NVD
NVD
added 2025/03/07 5:15 p.m.16 views

CVE-2025-27607

Python JSON Logger is a JSON Formatter for Python Logging. Between 30 December 2024 and 4 March 2025 Python JSON Logger was vulnerable to RCE through a missing dependency. This occurred because msgspec-python313-pre was deleted by the owner leaving the name open to being claimed by a third party...

8.8CVSS0.01543EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2025/03/07 5:15 p.m.7 views

CVE-2025-27607

Python JSON Logger is a JSON Formatter for Python Logging. Between 30 December 2024 and 4 March 2025 Python JSON Logger was vulnerable to RCE through a missing dependency. This occurred because msgspec-python313-pre was deleted by the owner leaving the name open to being claimed by a third party...

8.8CVSS7AI score0.01543EPSS
Exploits1References4
vulnersOsv
vulnersOsv
added 2025/03/07 4:42 p.m.5 views

backend-ai (=1.4.0), backend-ai-accelerator-cuda-open (>=24.9.5 <=26.4.4rc7) +38 more potentially affected by CVE-2025-27607 via python-json-logger (=3.2.1)

python-json-logger PYPI version =3.2.1 is affected by a known vulnerability. The following packages have a transitive dependency on python-json-logger and may be impacted: - backend-ai =1.4.0 - backend-ai-accelerator-cuda-open =24.9.5, =24.9.5, =24.9.5, =24.9.5, =25.13.0, =25.13.0, =25.13.0,...

8.8CVSS7.2AI score0.01543EPSS
Exploits1
Circl
Circl
added 2025/03/07 4:35 p.m.6 views

CVE-2025-27607

creationtimestamp| type| source ---|---|--- 2025-03-07 16:35:20+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6850 2025-03-07 18:01:34+00:00| seen| Telegram/MKyyCJNfVvpUH0PEmhW7az9OPnbIUC-jF-3Mo1io2kFbkQ 2025-03-07 18:45:18+00:00| seen|...

8.8CVSS7.3AI score0.01543EPSS
Exploits1References11
Vulnrichment
Vulnrichment
added 2025/03/07 4:18 p.m.17 views

CVE-2025-27607 Python JSON Logger has a Potential RCE via missing `msgspec-python313-pre` dependency

Python JSON Logger is a JSON Formatter for Python Logging. Between 30 December 2024 and 4 March 2025 Python JSON Logger was vulnerable to RCE through a missing dependency. This occurred because msgspec-python313-pre was deleted by the owner leaving the name open to being claimed by a third party...

8.8CVSS7.1AI score0.01543EPSS
Exploits1References3
CVE
CVE
added 2025/03/07 4:18 p.m.223 views

CVE-2025-27607

Technical details are not publicly available in the provided connected documents; monitor for updates.

8.8CVSS7.1AI score0.01543EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVE
added 2025/03/07 4:18 p.m.9 views

CVE-2025-27607

Python JSON Logger is a JSON Formatter for Python Logging. Between 30 December 2024 and 4 March 2025 Python JSON Logger was vulnerable to RCE through a missing dependency. This occurred because msgspec-python313-pre was deleted by the owner leaving the name open to being claimed by a third party...

8.8CVSS7.8AI score0.01543EPSS
Exploits1
Rows per page
Query Builder