Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

GithubExploit
GithubExploitadded 2026/02/15 12:27 p.m.209 views

Exploit for CVE-2025-4517

CVE-2025-4517-poc Here is the updated script as a Proof-of-Co...

9.4CVSS5.8AI score0.00403EPSS
Exploits11
Tenable Nessus
Tenable Nessusadded 2026/01/13 12:0 a.m.7 views

MiracleLinux 9 : python3.11-3.11.11-2.el9_6.1 (AXSA:2025-10624:06)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10624:06 advisory. cpython: Tarfile extracts filtered members when errorlevel=0 CVE-2025-4435 cpython: Bypass extraction filter to modify file metadata outside...

9.4CVSS6.7AI score0.01012EPSS
Exploits14References6
OSV
OSVadded 2025/09/19 1:13 p.m.5 views

OESA-2025-2305 python3 security update

Python combines remarkable power with very clear syntax. It has modules, classes, exceptions, very high level dynamic data types, and dynamic typing. There are interfaces to many system calls and libraries, as well as to various windowing systems. New built-in modules are easily written in C or C...

7.5CVSS6.3AI score0.01012EPSS
Exploits8References6
Tenable Nessus
Tenable Nessusadded 2025/08/18 12:0 a.m.3 views

Amazon Linux 2023 : python3.13, python3.13-devel, python3.13-freethreading (ALAS2023-2025-1147)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1147 advisory. There is a defect in the CPython tarfile module affecting the TarFile extraction and entry enumeration APIs. The tar implementation would process tar archives with negative offsets without error,...

7.5CVSS6.8AI score0.01007EPSS
Exploits0References4
F5 Networks
F5 Networksadded 2025/07/16 3:23 p.m.9 views

K000152599: Python tarfile vulnerability CVE-2024-12718

Security Advisory Description Allows modifying some file metadata e.g. last modified with filter="data" or file permissions chmod with filter="tar" of files outside the extraction directory. You are affected by this vulnerability if using the tarfile module to extract untrusted tar archives using...

5.3CVSS7.5AI score0.0079EPSS
Exploits1
F5 Networks
F5 Networksadded 2025/02/14 5:30 p.m.12 views

K000149808: Python tarfile vulnerability CVE-2007-4559

Security Advisory Description Directory traversal vulnerability in the 1 extract and 2 extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. dot dot sequence in filenames in a TAR archive, a related issue to CVE-2001-1267...

9.8CVSS7AI score0.89361EPSS
Exploits3
Tenable Nessus
Tenable Nessusadded 2024/10/25 12:0 a.m.5 views

F5 Networks BIG-IP : Python tarfile vulnerability (K000148252)

The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K000148252 advisory. There is a MEDIUM severity vulnerability affecting CPython. Regular expressions that allowed excessive backtracking...

7.5CVSS7AI score0.03014EPSS
Exploits2References2
Rows per page
Query Builder