CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

750 matches found

OpenVAS•added 2022/02/04 12:0 a.m.•20 views

Fedora: Security Advisory for python-pillow (FEDORA-2022-e4087f9366)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.5AI score0.02781EPSS

Exploits0References2

Redos•added 2022/02/01 12:0 a.m.•54 views

ROS-20220128-02

A vulnerability in the Python Pillow image library is related to buffer re-reading during the ImagePath.Path initialization in the pathgetbbox function in path.c. Exploitation of the vulnerability could allow an attacker acting remotely to pass a specially crafted file to a vulnerable library and...

9.8CVSS8.7AI score0.02781EPSS

Exploits0

OpenVAS•added 2022/01/28 12:0 a.m.•23 views

Mageia: Security Advisory (MGASA-2014-0476)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.6AI score0.03547EPSS

Exploits0References5

OpenVAS•added 2022/01/28 12:0 a.m.•24 views

Mageia: Security Advisory (MGASA-2014-0159)

4.4CVSS6.7AI score0.00111EPSS

Exploits2References6

OpenVAS•added 2022/01/28 12:0 a.m.•21 views

Mageia: Security Advisory (MGASA-2020-0434)

8.1CVSS6.9AI score0.00424EPSS

Exploits0References4

OpenVAS•added 2022/01/28 12:0 a.m.•29 views

Mageia: Security Advisory (MGASA-2020-0088)

9.8CVSS8.6AI score0.03942EPSS

Exploits0References4

OpenVAS•added 2022/01/28 12:0 a.m.•14 views

Mageia: Security Advisory (MGASA-2021-0448)

7.5CVSS7.7AI score0.00226EPSS

Exploits1References3

OpenVAS•added 2022/01/28 12:0 a.m.•22 views

Mageia: Security Advisory (MGASA-2014-0343)

5CVSS6.8AI score0.01389EPSS

Exploits0References4

OpenVAS•added 2022/01/28 12:0 a.m.•24 views

Mageia: Security Advisory (MGASA-2015-0039)

5CVSS6.7AI score0.01034EPSS

Exploits0References5

OpenVAS•added 2022/01/28 12:0 a.m.•22 views

Mageia: Security Advisory (MGASA-2021-0389)

9.8CVSS8AI score0.00398EPSS

Exploits1References3

RedhatCVE•added 2022/01/19 4:52 p.m.•63 views

CVE-2022-22817

A flaw was found in python-pillow. The vulnerability occurs due to Improper Neutralization, leading to command injection. This flaw allows an attacker to externally-influenced input commands that modify the intended command...

9.8CVSS5.2AI score0.02781EPSS

Exploits0References4

RedhatCVE•added 2022/01/19 4:25 p.m.•33 views

CVE-2022-22815

A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to improperly initializing the ImagePath. This flaw allows an attacker to access unauthorized memory that causes memory access errors, incorrect results, or crashes...

6.5CVSS5.9AI score0.00095EPSS

Exploits0References4

Tenable Nessus•added 2022/01/06 12:0 a.m.•37 views

EulerOS Virtualization 3.0.2.6 : python-pillow (EulerOS-SA-2021-2893)

According to the versions of the python-pillow package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The package pillow 5.2.0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service ReDoS via the getrgb...

9.8CVSS7AI score0.00398EPSS

Exploits2References7

OpenVAS•added 2021/12/31 12:0 a.m.•25 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2021-2893)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.8AI score0.00398EPSS

Exploits2References2

OpenVAS•added 2021/12/30 12:0 a.m.•23 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2021-2843)

9.8CVSS8.9AI score0.00398EPSS

Exploits2References2

Tenable Nessus•added 2021/12/29 12:0 a.m.•36 views

EulerOS Virtualization 3.0.2.0 : python-pillow (EulerOS-SA-2021-2843)

9.8CVSS7.3AI score0.00398EPSS

Exploits2References5

IBM Security Bulletins•added 2021/11/30 4:27 p.m.•24 views

Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Python Pillow

Summary IBM Watson Discovery for IBM Cloud Pak for Data contains a vulnerable version of Python Pillow. Vulnerability Details CVEID: CVE-2021-23437 DESCRIPTION: Python Pillow is vulnerable to a denial of service, caused by a regular expression denial of service ReDoS flaw in the getrgb function. ...

7.5CVSS7.3AI score0.00226EPSS

Exploits1Affected Software1

Tenable Nessus•added 2021/11/17 12:0 a.m.•38 views

EulerOS Virtualization 2.9.0 : python-pillow (EulerOS-SA-2021-2775)

9.8CVSS7.3AI score0.00337EPSS

Exploits2References5

OpenVAS•added 2021/11/17 12:0 a.m.•21 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2021-2731)

9.8CVSS8.4AI score0.00337EPSS

Exploits2References2

Tenable Nessus•added 2021/11/17 12:0 a.m.•38 views

EulerOS Virtualization 2.9.1 : python-pillow (EulerOS-SA-2021-2731)