Lucene search
K

4 matches found

Amazon
Amazon
added 2025/04/01 12:0 a.m.7 views

Medium: python38-pip

Issue Overview: Directory traversal vulnerability in the 1 extract and 2 extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. dot dot sequence in filenames in a TAR archive, a related issue to CVE-2001-1267. CVE-2007-4559...

9.8CVSS7.2AI score0.27095EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2024/12/23 12:0 a.m.13 views

Amazon Linux 2 : python38-pip (ALASPYTHON3.8-2024-017)

The version of python38-pip installed on the remote host is prior to 21.0.1-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2PYTHON3.8-2024-017 advisory. Requests is a HTTP library. Prior to 2.32.0, when making requests through a Requests Session, if the first request is...

5.6CVSS6.5AI score0.0034EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/11/13 12:0 a.m.12 views

Amazon Linux 2 : python38-pip (ALASPYTHON3.8-2024-015)

The version of python38-pip installed on the remote host is prior to 21.0.1-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2PYTHON3.8-2024-015 advisory. python-idna: potential DoS via resource consumption via specially crafted inputs to idna.encode CVE-2024-3651 Tenable...

7.5CVSS6.8AI score0.01386EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/10/15 12:0 a.m.6 views

Amazon Linux 2 : python38-pip (ALASPYTHON3.8-2024-013)

The version of python38-pip installed on the remote host is prior to 21.0.1-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2PYTHON3.8-2024-013 advisory. urllib3 is a user-friendly HTTP client library for Python. When using urllib3's proxy support with ProxyManager, the...

6.5CVSS6.7AI score0.01141EPSS
Exploits1References4
Rows per page
Query Builder