24 matches found
Ubuntu: Security Advisory (USN-7989-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-6035-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 6035-1] python-internetarchive security update
------------------------------------------------------------------------- Debian Security Advisory DSA-6035-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 23, 2025 https://www.debian.org/security/faq -...
Debian dsa-6035 : internetarchive - security update
The remote Debian 12 / 13 host has packages installed that are affected by a vulnerability as referenced in the dsa-6035 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6035-1 [email protected] https://www.debian.org/security/...
EUVD-2025-27084
Malicious code in bioql PyPI...
Debian dla-4314 : internetarchive - security update
The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4314 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4314-1 [email protected] https://www.debian.org/lts/security/...
DLA-4314-1 python-internetarchive - security update
Bulletin has no description...
Debian: Security Advisory (DLA-4314-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 4314-1] python-internetarchive security update
Debian LTS Advisory DLA-4314-1 [email protected] https://www.debian.org/lts/security/ Daniel Leidert September 30, 2025 https://wiki.debian.org/LTS Package : python-internetarchive Version : 1.9.9-1+deb11u1 CVE ID : CVE-2025-58438 Debian Bug : 1114635 A vulnerability has been discovered...
CVE-2025-58438
internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...
Linux Distros Unpatched Vulnerability : CVE-2025-58438
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability i...
wikiteam3 (>=4.4.3 <=4.4.7) potentially affected by CVE-2025-58438 via internetarchive (=5.4.1)
internetarchive PYPI version =5.4.1 is affected by a known vulnerability. The following packages have a transitive dependency on internetarchive and may be impacted: - wikiteam3 =4.4.3, =4.4.7 Source cves: CVE-2025-58438 Source advisory: SNYK:PYTHON-INTERNETARCHIVE-12549189...
CVE-2025-58438
internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...
DEBIAN-CVE-2025-58438
internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...
UBUNTU-CVE-2025-58438
internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...
CVE-2025-58438
CVE-2025-58438 affects the Python Internet Archive library (lib/python-internetarchive) with a directory traversal in File.download(); vulnerable in 5.5.0 and below. The issue is fixed in 5.5.1. Debian/Ubuntu advisories confirm package upgrades are required (e.g., Debian DLA-4314 and USN-7989-1)....
CVE-2025-58438
internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...
CVE-2025-58438 internetarchive is vulnerable to Directory Traversal through file downloads
internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...
CVE-2025-58438 internetarchive is vulnerable to Directory Traversal through file downloads
internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...
CVE-2025-58438 internetarchive is vulnerable to Directory Traversal through file downloads
internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...