Lucene search
+L

161 matches found

Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.30 views

RHEL 8 : Red Hat OpenStack Platform 17.1 (python-eventlet) (RHSA-2024:0188)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:0188 advisory. Eventlet is a networking library written in Python. It achieves high scalability by using non-blocking io while at the same time retaining high...

7.5CVSS6.8AI score0.01807EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.25 views

RHEL 9 : OpenShift Container Platform 4.12.41 (RHSA-2023:6128)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:6128 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud...

7.5CVSS6.8AI score0.01807EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/04/12 2:14 a.m.3 views

SUSE CVE-2023-29483

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

5.9CVSS9.3AI score0.01857EPSS
Exploits1References10
vulnersOsv
vulnersOsv
added 2024/04/11 3:30 p.m.4 views

aalam-common (=0.1.78), agency (>=1.0.0 <=1.1.0) +142 more potentially affected by CVE-2023-29483 via eventlet (>=0.20.0 <=0.34.2)

eventlet PYPI version =0.20.0, =1.0.0, =0.5.5, =0.61.9, =0.4.0, =2.3.0, =1.0.5, =0.6.7.post3, =0.0.17, =1.0.12, =0.1.3, =0.45.15, =0.1.6, =0.1.6.7 and more Source cves: CVE-2023-29483 Source advisory: OSV:GHSA-3RQ5-2G8H-59HC...

7CVSS6.7AI score0.01857EPSS
Exploits1
OSV
OSV
added 2024/04/11 3:30 p.m.29 views

GHSA-3RQ5-2G8H-59HC Potential DoS via the Tudoor mechanism in eventlet and dnspython

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

5.9CVSS6.5AI score0.01857EPSS
Exploits1References14
Github Security Blog
Github Security Blog
added 2024/04/11 3:30 p.m.40 views

Potential DoS via the Tudoor mechanism in eventlet and dnspython

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

7CVSS6.8AI score0.01857EPSS
Exploits1References14Affected Software2
OSV
OSV
added 2024/04/11 2:15 p.m.2 views

DEBIAN-CVE-2023-29483

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

7CVSS6.9AI score0.01857EPSS
Exploits1References1
NVD
NVD
added 2024/04/11 2:15 p.m.19 views

CVE-2023-29483

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

7CVSS8.3AI score0.01857EPSS
Exploits1References12
OSV
OSV
added 2024/04/11 2:15 p.m.3 views

UBUNTU-CVE-2023-29483

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

7CVSS7AI score0.01857EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/04/11 12:0 a.m.31 views

CVE-2023-29483

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

6.6AI score0.01857EPSS
Exploits1References10
Vulnrichment
Vulnrichment
added 2024/04/11 12:0 a.m.16 views

CVE-2023-29483

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

6.8AI score0.01857EPSS
Exploits1References10
CNNVD
CNNVD
added 2024/04/11 12:0 a.m.3 views

Eventlet 安全漏洞

Eventlet is a concurrent networking library for Python. A security vulnerability exists in Eventlet versions prior to 0.35.2 that originated from allowing remote attackers to interfere with DNS name resolution by rapidly sending invalid packets from the expected IP address and source port...

7CVSS7.2AI score0.01857EPSS
Exploits1References12
Debian CVE
Debian CVE
added 2024/04/11 12:0 a.m.41 views

CVE-2023-29483

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

7CVSS7AI score0.01857EPSS
Exploits1
OSV
OSV
added 2024/04/11 12:0 a.m.29 views

CVE-2023-29483

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

7CVSS6.8AI score0.01857EPSS
Exploits1References14
Redos
Redos
added 2024/04/09 12:0 a.m.23 views

ROS-20240409-13

A vulnerability in the python-eventlet library of the OpenStack Platform cloud building platform is related to incorrect resource sweeping or freeing. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS7.1AI score0.00802EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/02/09 12:0 a.m.4 views

PT-2024-12218

Name of the Vulnerable Software and Affected Versions dnspython versions prior to 2.6.1 eventlet versions prior to 0.35.2 Description The issue allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, also kno...

7CVSS6AI score0.01857EPSS
Exploits1References86
RedHat Linux
RedHat Linux
added 2024/01/16 2:36 p.m.4 views

python-eventlet: patch regression for CVE-2021-21419 in some Red Hat builds

A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch application strategy, resulting in a patch for CVE-2021-21419 not being applied for all builds of all products...

7.5CVSS7.3AI score0.01807EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/01/16 2:33 p.m.3 views

python-eventlet: patch regression for CVE-2021-21419 in some Red Hat builds

A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch application strategy, resulting in a patch for CVE-2021-21419 not being applied for all builds of all products...

7.5CVSS7.3AI score0.01807EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/01/16 2:33 p.m.40 views

Moderate: Red Hat Security Advisory: Red Hat OpenStack Platform 17.1 (python-eventlet) security update

An update for python-eventlet is now available for Red Hat OpenStack Platform 17.1 Wallaby. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.7AI score0.01807EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.30 views

RHEL 9 : Red Hat OpenStack Platform 17.1 (python-eventlet) (RHSA-2024:0213)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:0213 advisory. Eventlet is a networking library written in Python. It achieves high scalability by using non-blocking io while at the same time retaining high...

7.5CVSS6.8AI score0.01807EPSS
Exploits0References5
Rows per page
Query Builder