Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

615 matches found

OSV
OSVadded 2021/12/13 9:30 a.m.5 views

SUSE-SU-2021:4001-1 Security update for python-pip

This update for python-pip fixes the following issues: - CVE-2021-3572: Fixed incorrect handling of unicode separators in git references bsc1186819...

5.7CVSS6AI score0.0024EPSS
Exploits2References3
OPENSUSE Linux
OPENSUSE Linuxadded 2021/12/13 12:0 a.m.40 views

Security update for python-pip (moderate)

openSUSE Security Update: Security update for python-pip Announcement ID: openSUSE-SU-2021:4002-1 Rating: moderate References: 1186819 Cross-References: CVE-2021-3572 CVSS scores: CVE-2021-3572 SUSE: 4.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N Affected Products: openSUSE Leap 15.3 An update...

4.5CVSS7.5AI score0.0024EPSS
Exploits2References1
OPENSUSE Linux
OPENSUSE Linuxadded 2021/12/13 12:0 a.m.33 views

Security update for python-pip (moderate)

openSUSE Security Update: Security update for python-pip Announcement ID: openSUSE-SU-2021:4001-1 Rating: moderate References: 1186819 Cross-References: CVE-2021-3572 CVSS scores: CVE-2021-3572 SUSE: 4.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N Affected Products: openSUSE Leap 15.3 An update...

4.5CVSS7.5AI score0.0024EPSS
Exploits2References1
Tenable Nessus
Tenable Nessusadded 2021/12/10 12:0 a.m.47 views

Oracle Linux 8 : python38:3.8 / and / python38-devel:3.8 (ELSA-2021-4162)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-4162 advisory. - The package python/cpython from 0 and before 3.6.13, from 3.7.0 and before 3.7.10, from 3.8.0 and before 3.8.8, from 3.9.0 and before 3.9.2 are...

9.8CVSS7.8AI score0.02048EPSS
Exploits7References10
OpenVAS
OpenVASadded 2021/11/17 12:0 a.m.16 views

Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2021-2796)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.7CVSS6.2AI score0.0024EPSS
Exploits2References2
OpenVAS
OpenVASadded 2021/11/17 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2021-2761)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.7CVSS6.2AI score0.0024EPSS
Exploits2References2
Tenable Nessus
Tenable Nessusadded 2021/11/17 12:0 a.m.32 views

EulerOS Virtualization 2.9.1 : python-pip (EulerOS-SA-2021-2761)

According to the versions of the python-pip packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in python-pip in the way it handled Unicode separators in git references. A remote attacker could possibly u...

5.7CVSS7.1AI score0.0024EPSS
Exploits2References2
Tenable Nessus
Tenable Nessusadded 2021/11/17 12:0 a.m.38 views

EulerOS Virtualization 2.9.0 : python-pip (EulerOS-SA-2021-2796)

According to the versions of the python-pip packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in python-pip in the way it handled Unicode separators in git references. A remote attacker could possibly u...

5.7CVSS7.1AI score0.0024EPSS
Exploits2References2
Tenable Nessus
Tenable Nessusadded 2021/11/17 12:0 a.m.18 views

Oracle Linux 8 : python-pip (ELSA-2021-4455)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-4455 advisory. 9.0.3-20 - Fix for CVE-2021-3572 - pip incorrectly handled unicode separators in git references Resolves: rhbz1962856 Tenable has extracted the preceding...

5.7CVSS7.2AI score0.0024EPSS
Exploits2References2
Oracle linux
Oracle linuxadded 2021/11/16 12:0 a.m.43 views

python-pip security update

9.0.3-20 - Fix for CVE-2021-3572 - pip incorrectly handled unicode separators in git references Resolves: rhbz1962856...

5.7CVSS6.9AI score0.0024EPSS
Exploits2
OSV
OSVadded 2021/11/15 5:45 p.m.26 views

GHSA-5XP3-JFQ3-5Q8X Improper Input Validation in pip

A flaw was found in python-pip in the way it handled Unicode separators in git references. A remote attacker could possibly use this issue to install a different revision on a repository. The highest threat from this vulnerability is to data integrity. This is fixed in python-pip version 21.1...

7.1CVSS6AI score0.0024EPSS
Exploits2References12
Github Security Blog
Github Security Blogadded 2021/11/15 5:45 p.m.197 views

Improper Input Validation in pip

A flaw was found in python-pip in the way it handled Unicode separators in git references. A remote attacker could possibly use this issue to install a different revision on a repository. The highest threat from this vulnerability is to data integrity. This is fixed in python-pip version 21.1...

5.7CVSS6.3AI score0.0024EPSS
Exploits2References11Affected Software1
OpenVAS
OpenVASadded 2021/11/12 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2021-2720)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.7CVSS6.2AI score0.0024EPSS
Exploits2References2
OpenVAS
OpenVASadded 2021/11/12 12:0 a.m.8 views

Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2021-2695)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.7CVSS6.2AI score0.0024EPSS
Exploits2References2
Tenable Nessus
Tenable Nessusadded 2021/11/11 12:0 a.m.24 views

EulerOS 2.0 SP9 : python-pip (EulerOS-SA-2021-2695)

According to the versions of the python-pip packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in python-pip in the way it handled Unicode separators in git references. A remote attacker could possibly use this issue t...

5.7CVSS7.1AI score0.0024EPSS
Exploits2References2
Tenable Nessus
Tenable Nessusadded 2021/11/11 12:0 a.m.66 views

RHEL 8 : python-pip (RHSA-2021:4455)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:4455 advisory. pip is a package management system used to install and manage software packages written in Python. Many packages can be found in the Python Package...

5.7CVSS7.2AI score0.0024EPSS
Exploits2References6
Tenable Nessus
Tenable Nessusadded 2021/11/11 12:0 a.m.31 views

CentOS 8 : python-pip (CESA-2021:4455)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2021:4455 advisory. - python-pip: Incorrect handling of unicode separators in git references CVE-2021-3572 Note that Nessus has not tested for this issue but has instead relied onl...

5.7CVSS7.2AI score0.0024EPSS
Exploits2References2
Tenable Nessus
Tenable Nessusadded 2021/11/11 12:0 a.m.64 views

CentOS 8 : python39:3.9 and python39-devel:3.9 (CESA-2021:4160)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:4160 advisory. - python-lxml: Missing input sanitization for formaction HTML5 attributes may lead to XSS CVE-2021-28957 - python-ipaddress: Improper input validation ...

9.8CVSS7AI score0.02048EPSS
Exploits6References8
Tenable Nessus
Tenable Nessusadded 2021/11/11 12:0 a.m.28 views

EulerOS 2.0 SP9 : python-pip (EulerOS-SA-2021-2720)

According to the versions of the python-pip packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in python-pip in the way it handled Unicode separators in git references. A remote attacker could possibly use this issue t...

5.7CVSS7.1AI score0.0024EPSS
Exploits2References2
OSV
OSVadded 2021/11/10 6:15 p.m.16 views

CVE-2021-3572

A flaw was found in python-pip in the way it handled Unicode separators in git references. A remote attacker could possibly use this issue to install a different revision on a repository. The highest threat from this vulnerability is to data integrity. This is fixed in python-pip version 21.1...

5.7CVSS7.2AI score
Exploits0References4
Rows per page
Query Builder