Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.7 views

MiracleLinux 8 : python27:2.7 (AXSA:2022-3551:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3551:01 advisory. python: urllib: Regular expression DoS in AbstractBasicAuthHandler CVE-2021-3733 python: ftplib should not use the host from the PASV response...

8.2CVSS7.4AI score0.11586EPSS
Exploits3References6
OSV
OSV
added 2022/12/03 3:15 p.m.4 views

UBUNTU-CVE-2021-37533

Prior to Apache Commons Net 3.9.0, Net's FTP client trusts the host from PASV response by default. A malicious server can redirect the Commons Net code to use a different host, but the user has to connect to the malicious server in the first place. This may lead to leakage of information about...

6.5CVSS6.8AI score0.01858EPSS
Exploits0References6
OSV
OSV
added 2022/06/06 2:39 p.m.6 views

CLSA-2022-1654526367 Fixed CVEs in python-setuptools_scm-6.module_el8.5.0+2050+77770ab7: CVE-2021-4189, CVE-2022-0391, CVE-2021-3733, CVE-2021-3737

CVE-2021-3733: urllib: Regular expression DoS in AbstractBasicAuthHandler rhbz2047376 - CVE-2021-3737: urllib: HTTP client possible infinite loop on a 100 Continue response rhbz2047376 - CVE-2021-4189: ftplib should not use the host from the PASV response rhbz2047376 - CVE-2022-0391: urllib.parse...

7.5CVSS6.8AI score0.11586EPSS
Exploits3References1
OSV
OSV
added 2022/05/30 2:16 p.m.11 views

CLSA-2022-1653920195 Fixed CVEs in python3: CVE-2021-3737, CVE-2021-3426, CVE-2021-4189, CVE-2022-0391

CVE-2021-3426: Remove the pydoc getfile feature which could lead to information disclosure rhbz1935913 - CVE-2021-3737: urllib: HTTP client possible infinite loop on a 100 Continue response rhbz2036020 - CVE-2021-4189: ftplib should not use the host from the PASV response rhbz2036020 -...

7.5CVSS5.8AI score0.11586EPSS
Exploits2References1
Rows per page
Query Builder