SUSE SLED15 / SLES15 / openSUSE 15 Security Update : python3 (SUSE-SU-2024:0581-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:0581-1 advisory. - The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special...

SUSE-SU-2024:0581-1 Security update for python3

This update for python3 fixes the following issues: - CVE-2023-27043: Fixed incorrectly parses e-mail addresses which contain a special character bsc1210638...

SUSE SLES15 Security Update : openvswitch (SUSE-SU-2024:0526-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:0526-1 advisory. - openvswitch 2.17.8 was discovered to contain a memory leak via the function xmalloc in openvswitch-2.17.8/lib/util.c. CVE-2024-22563 Note...

SUSE SLES15 Security Update : salt (SUSE-SU-2024:0507-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0507-1 advisory. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : salt (SUSE-SU-2024:0510-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0510-1 advisory. Note that Nessus has not tested for these issues but has instead relied only on the application'...

SUSE SLES15 Security Update : salt (SUSE-SU-2024:0506-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0506-1 advisory. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL...

Moderate Photon OS Security Update - PHSA-2024-5.0-0211

Updates of 'python3-urllib3' packages of Photon OS have been released...

SUSE-SU-2024:0464-1 Security update for python3

This update for python3 fixes the following issues: - CVE-2023-27043: Fixed incorrectly parses e-mail addresses which contain a special character bsc1210638. - CVE-2022-48566: Use CRYPTOmemcmp for comparedigest bsc1214691...

Ubuntu 20.04 LTS : UltraJSON vulnerability (USN-6629-2)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-6629-2 advisory. USN-6629-1 fixed vulnerabilities in UltraJSON. This update provides the corresponding updates for Ubuntu 20.04 LTS. Tenable has extracted the preceding descriptio...

SUSE SLES12 Security Update : python3 (SUSE-SU-2024:0438-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:0438-1 advisory. - The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an...

SUSE-SU-2024:0438-1 Security update for python3

This update for python3 fixes the following issues: - CVE-2023-27043: Fixed incorrectly parses e-mail addresses which contain a special character bsc1210638...

SUSE: Security Advisory (SUSE-SU-2024:0438-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Exploit for SQL Injection in Automattic Woocommerce_Blocks

CVE-2021-32789 Authenticated Blind SQL Injection. Wordpress wo...

Exploit for Injection in Vm2_Project Vm2

CVE-2023-30547 This is a Proof-of-Concept to CVE-2023-30547 h...

CentOS 8 : python3 (CESA-2023:7151)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2023:7151 advisory. - Directory traversal vulnerability in the 1 extract and 2 extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwri...

CentOS 8 : python3 (CESA-2023:3591)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2023:3591 advisory. - An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank...

Amazon Linux 2 : python3-jinja2 (ALAS-2024-2437)

The version of python3-jinja2 installed on the remote host is prior to 2.7.2-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2437 advisory. Jinja is an extensible templating engine. Special placeholders in the template allow writing code similar to Python syntax. ...

Amazon Linux 2023 : python3-jinja2 (ALAS2023-2024-503)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-503 advisory. Jinja is an extensible templating engine. Special placeholders in the template allow writing code similar to Python syntax. It is possible to inject arbitrary HTML attributes into the rendered HTML...

Medium: python3-jinja2

Issue Overview: Jinja is an extensible templating engine. Special placeholders in the template allow writing code similar to Python syntax. It is possible to inject arbitrary HTML attributes into the rendered HTML template, potentially leading to Cross-Site Scripting XSS. The Jinja xmlattr filter...

Moderate: Red Hat Security Advisory: python3 security update

An update for python3 is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...