Lucene search
K

71 matches found

Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.15 views

Fedora 39 : pypy (2023-5460cf6dfb)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-5460cf6dfb advisory. Security fix for CVE-2022-45061 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

7.5CVSS7.1AI score0.02453EPSS
Exploits1References2
Amazon
Amazon
added 2023/09/25 12:0 a.m.7 views

Important: python38

Issue Overview: An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA RFC 3490 decoder, such that a crafted, unreasonably long name being presented to the decoder could lead to a CPU denial of service...

7.5CVSS7.1AI score0.02453EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2023/09/09 12:0 a.m.14 views

Fedora 38 : pypy (2023-c43a940a93)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-c43a940a93 advisory. Security fix for CVE-2022-45061 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

7.5CVSS7.1AI score0.02453EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/07/26 12:0 a.m.17 views

EulerOS Virtualization 3.0.6.6 : python (EulerOS-SA-2023-2415)

According to the versions of the python packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some input...

7.5CVSS7.1AI score0.02453EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/07/03 12:0 a.m.23 views

Debian: Security Advisory (DLA-3477-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8CVSS7.4AI score0.11586EPSS
Exploits4References4
Tenable Nessus
Tenable Nessus
added 2023/06/13 12:0 a.m.49 views

EulerOS Virtualization 3.0.6.0 : python3 (EulerOS-SA-2023-2229)

According to the versions of the python3 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In Python aka CPython up to 3.10.8, the mailcap module does not add escape characters into commands discovered in the system...

9.8CVSS7.4AI score0.07017EPSS
Exploits3References6
Tenable Nessus
Tenable Nessus
added 2023/06/07 12:0 a.m.31 views

EulerOS Virtualization 2.11.1 : python3 (EulerOS-SA-2023-2051)

According to the versions of the python3 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In Python aka CPython up to 3.10.8, the mailcap module does not add escape characters into commands discovered in the system...

8CVSS7.6AI score0.07017EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2023/05/19 12:0 a.m.34 views

AlmaLinux 8 : python27:2.7 (ALSA-2023:2860)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:2860 advisory. Python: CPU denial of service via inefficient IDNA decoder CVE-2022-45061 Tenable has extracted the preceding description block directly from the AlmaLinux securit...

7.5CVSS6.9AI score0.02453EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2023/05/16 8:43 a.m.4 views

python: CPU denial of service via inefficient IDNA decoder

A vulnerability was discovered in Python. A quadratic algorithm exists when processing inputs to the IDNA RFC 3490 decoder, such that a crafted unreasonably long name being presented to the decoder could lead to a CPU denial of service. Hostnames are often supplied by remote servers that could be...

7.5CVSS6.9AI score0.02453EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2023/05/16 8:33 a.m.6 views

python: CPU denial of service via inefficient IDNA decoder

A vulnerability was discovered in Python. A quadratic algorithm exists when processing inputs to the IDNA RFC 3490 decoder, such that a crafted unreasonably long name being presented to the decoder could lead to a CPU denial of service. Hostnames are often supplied by remote servers that could be...

7.5CVSS6.9AI score0.02453EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2023/05/16 12:0 a.m.47 views

EulerOS Virtualization 2.10.0 : python3 (EulerOS-SA-2023-1927)

According to the versions of the python3 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows...

9.8CVSS7.6AI score0.05193EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2023/05/16 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for python3 (EulerOS-SA-2023-1896)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.2AI score0.05193EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2023/05/16 12:0 a.m.24 views

CentOS 8 : python27:2.7 (CESA-2023:2860)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2023:2860 advisory. - An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA RFC 3490 decode...

7.5CVSS7.1AI score0.02453EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/05/16 12:0 a.m.52 views

RHEL 8 : python39:3.9 and python39-devel:3.9 (RHSA-2023:2764)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:2764 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level...

7.5CVSS7.2AI score0.03213EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2023/05/16 12:0 a.m.40 views

EulerOS Virtualization 2.10.1 : python3 (EulerOS-SA-2023-1896)

According to the versions of the python3 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows...

9.8CVSS7.6AI score0.05193EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2023/05/16 12:0 a.m.30 views

RHEL 8 : python27:2.7 (RHSA-2023:2860)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:2860 advisory. Python is an interpreted, interactive, object-oriented programming language that supports modules, classes, exceptions, high-level dynamic data types...

7.5CVSS7AI score0.02453EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2023/04/27 12:0 a.m.64 views

EulerOS Virtualization 2.9.0 : python3 (EulerOS-SA-2023-1680)

According to the versions of the python3 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows...

9.8CVSS7.6AI score0.05193EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2023/04/27 12:0 a.m.35 views

EulerOS Virtualization 2.9.1 : python3 (EulerOS-SA-2023-1646)

According to the versions of the python3 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows...

9.8CVSS7.6AI score0.05193EPSS
Exploits2References3
Amazon
Amazon
added 2023/04/05 12:0 a.m.69 views

Important: python27

Issue Overview: An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA RFC 3490 decoder, such that a crafted, unreasonably long name being presented to the decoder could lead to a CPU denial of service...

7.5CVSS8.2AI score0.20459EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2023/03/21 12:0 a.m.72 views

Amazon Linux 2023 : python3, python3-devel, python3-idle (ALAS2023-2023-104)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-104 advisory. Python 3.9.x before 3.9.16 and 3.10.x before 3.10.9 on Linux allows local privilege escalation in a non- default configuration. The Python multiprocessing library, when used with the forkserver...

7.8CVSS7.7AI score0.02453EPSS
Exploits1References6
Rows per page
Query Builder