Lucene search
K

5 matches found

RedHat Linux
RedHat Linux
added 2026/07/07 8:17 p.m.3 views

pip: pip: Incorrect file installation due to improper archive handling

A flaw was found in pip. This vulnerability occurs because pip incorrectly processes concatenated tar and ZIP files as ZIP files, regardless of their true format. This improper handling can lead to confusing installation behavior, potentially causing the installation of unintended or 'incorrect'...

4.6CVSS6.5AI score0.00144EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2021-0186

Malware in sbrugna...

5.7CVSS7AI score0.01687EPSS
Exploits2References21
PyPA
PyPA
added 2021/11/10 6:15 p.m.8 views

PYSEC-2021-437

A flaw was found in python-pip in the way it handled Unicode separators in git references. A remote attacker could possibly use this issue to install a different revision on a repository. The highest threat from this vulnerability is to data integrity. This is fixed in python-pip version 21.1...

5.7CVSS6.7AI score0.01687EPSS
Exploits2References2Affected Software1
OSV
OSV
added 2021/11/10 6:15 p.m.5 views

UBUNTU-CVE-2021-3572

A flaw was found in python-pip in the way it handled Unicode separators in git references. A remote attacker could possibly use this issue to install a different revision on a repository. The highest threat from this vulnerability is to data integrity. This is fixed in python-pip version 21.1...

5.7CVSS6.8AI score0.01687EPSS
Exploits2References7
RedhatCVE
RedhatCVE
added 2020/05/14 12:40 p.m.36 views

CVE-2018-20225

A flaw was found in python-pip. The software installs the version with the highest version number, even if the user had intended to obtain a private package from a private index. This only affects use of the --extra-index-url option, and exploitation requires that the package does not already exi...

6.8CVSS2.4AI score0.01736EPSS
Exploits0References4
Rows per page
Query Builder