Lucene search
K

27 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.2 views

MiracleLinux 8 : python3-3.6.8-56.el8_9.3.ML.1 (AXSA:2024-7427:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7427:02 advisory. python: Parsing errors in email/parseaddr.py lead to incorrect value in email address part of tuple CVE-2023-27043 Tenable has extracted the preceding...

5.3CVSS7.3AI score0.02507EPSS
Exploits1References2
OSV
OSV
added 2025/08/11 1:52 p.m.4 views

BIT-LIBPYTHON-2023-36632

The legacy email.utils.parseaddr function in Python through 3.11.4 allows attackers to trigger "RecursionError: maximum recursion depth exceeded while calling a Python object" via a crafted argument. This argument is plausibly an untrusted value from an application's input data that was supposed ...

7.5CVSS8.7AI score0.01584EPSS
Exploits1References5
OSV
OSV
added 2024/10/28 4:45 p.m.6 views

CLSA-2024-1730133909 Fix CVE(s): CVE-2023-27043

SECURITY UPDATE: Incorrect parsing of email addresses containing special characters - debian/patches/CVE-2023-27043.patch: Fix email address parsing errors by adding optional 'strict' parameter to getaddresses and parseaddr functions - CVE-2023-27043...

5.3CVSS6.8AI score0.02507EPSS
Exploits1References1
OSV
OSV
added 2024/10/22 8:14 p.m.5 views

CLSA-2024-1729628050 Fix CVE(s): CVE-2023-27043

SECURITY UPDATE: Incorrect parsing of email addresses containing special characters - debian/patches/CVE-2023-27043.patch: Fix email address parsing errors by adding optional 'strict' parameter to getaddresses and parseaddr functions - debian/patches/fix-urllib2-test.patch: Fix error in...

5.3CVSS6.8AI score0.02507EPSS
Exploits1References1
OSV
OSV
added 2024/10/22 8:3 p.m.5 views

CLSA-2024-1729627400 Fix CVE(s): CVE-2023-27043

SECURITY UPDATE: Incorrect parsing of email addresses containing special characters - debian/patches/CVE-2023-27043.patch: Fix email address parsing errors by adding optional 'strict' parameter to getaddresses and parseaddr functions - debian/patches/fix-urllib2-test.patch: Fix error in...

5.3CVSS6.8AI score0.02507EPSS
Exploits1References1
OSV
OSV
added 2024/06/06 5:1 p.m.7 views

CLSA-2024-1717693264 python2: Fix of CVE-2023-27043

Remove -b option, use original maintainer approach - CVE-2023-27043: reject malformed addresses in email.parseaddr...

5.3CVSS6.8AI score0.02507EPSS
Exploits1References1
OSV
OSV
added 2024/06/06 4:41 p.m.4 views

CLSA-2024-1717692075 python2: Fix of CVE-2023-27043

Remove -b option, use original maintainer approach - CVE-2023-27043: reject malformed addresses in email.parseaddr...

5.3CVSS6.8AI score0.02507EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2024/04/30 9:50 a.m.4 views

python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple

The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is...

5.3CVSS6.7AI score0.02507EPSS
Exploits1References5
OSV
OSV
added 2024/03/28 5:56 p.m.4 views

CLSA-2024-1711648611 python3.9: Fix of CVE-2023-27043

CVE-2023-27043: reject malformed addresses in email.parseaddr...

5.3CVSS6.8AI score0.02507EPSS
Exploits1References1
OSV
OSV
added 2024/03/26 10:16 p.m.7 views

CLSA-2024-1711491407 python: Fix of CVE-2023-27043

CVE-2023-27043: reject malformed addresses in email.parseaddr...

5.3CVSS6.8AI score0.02507EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2024/01/25 10:54 a.m.4 views

python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple

The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is...

5.3CVSS6.7AI score0.02507EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2024/01/25 9:1 a.m.4 views

python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple

The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is...

5.3CVSS6.7AI score0.02507EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2023/08/29 12:0 a.m.6 views

The vulnerability of the email.utils.parseaddr function in the Python interpreter allows a attacker to cause a service failure.

The vulnerability of the email.utils.parseaddr function in the Python programming language is related to an uncontrolled recursion. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.8CVSS6.5AI score0.01584EPSS
Exploits1References6Affected Software1
CNNVD
CNNVD
added 2023/06/25 12:0 a.m.14 views

Python 安全漏洞

Python is an open source, object-oriented programming language from the Python Foundation. The language is extensible, supports modules and packages, and supports multiple platforms. A security vulnerability exists in Python version 3.11.4 and earlier, which stems from a recursive exception in th...

7.5CVSS6.5AI score0.01584EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2023/06/25 12:0 a.m.2 views

PT-2023-4570 · Python · Python

Name of the Vulnerable Software and Affected Versions: Python versions through 3.11.4 Description: The legacy email.utils.parseaddr function in Python allows attackers to trigger a "RecursionError: maximum recursion depth exceeded while calling a Python object" via a crafted argument. This argume...

7.8CVSS7.9AI score0.01584EPSS
Exploits1References16
OSV
OSV
added 2023/04/19 12:15 a.m.2 views

ALPINE-CVE-2023-27043

The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is...

5.3CVSS6.8AI score0.02507EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2023/04/19 12:15 a.m.115 views

CVE-2023-27043

The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is...

5.3CVSS6.7AI score0.02507EPSS
Exploits1References8
Vulnrichment
Vulnrichment
added 2023/04/18 12:0 a.m.0 views

CVE-2023-27043

The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is...

5.6AI score0.02507EPSS
Exploits1References23
SUSE CVE
SUSE CVE
added 2023/02/15 6:21 a.m.2 views

SUSE CVE-2003-0694

The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c...

10CVSS8.4AI score0.60185EPSS
Exploits3References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:12 a.m.3 views

SUSE CVE-2019-11340

util/emailutils.py in Matrix Sydent before 1.0.2 mishandles registration restrictions that are based on e-mail domain, if the allowedlocal3pids option is enabled. This occurs because of potentially unwanted behavior in Python, in which an email.utils.parseaddr call on...

5.9CVSS6.2AI score0.01861EPSS
Exploits0References3
Rows per page
Query Builder