Mageia: Security Advisory (MGASA-2026-0011)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2026-186829baee)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OPENSUSE-SU-2026:10070-1 python-keystonemiddleware-doc-10.12.0-2.1 on GA media

These are all security issues fixed in the python-keystonemiddleware-doc-10.12.0-2.1 package on the GA media of openSUSE Tumbleweed...

MiracleLinux 8 : python3-3.6.8-41.el8.ML.1 (AXSA:2021-2751:06)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2751:06 advisory. python: Information disclosure via pydoc CVE-2021-3426 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

MiracleLinux 7 : rh-python36-python-pip-9.0.1-5.el7, rh-python36-python-3.6.12-1.el7, rh-python36-python-virtualenv-15.1.0-3.el7 (AXSA:2020-772:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-772:01 advisory. python: XSS vulnerability in the documentation XML-RPC server in servertitle field CVE-2019-16935 python: CRLF injection via the host part of the url...

MiracleLinux 4 : hivex-1.3.3-4.3.AXS4 (AXSA:2015-405:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2015-405:01 advisory. Hive files are the undocumented binary blobs that Windows uses to store the Windows Registry on disk. Hivex is a library that can read and write to these file...

MiracleLinux 4 : python-imaging-1.1.6-20.AXS4 (AXSA:2020-4501:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-4501:01 advisory. python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c CVE-2020-5312 Tenable has extracted the preceding description bloc...

MiracleLinux 7 : mercurial-2.6.2-7.el7 (AXEA:2017-1725:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXEA:2017-1725:01 advisory. - In Mercurial before 4.1.3, hg serve --stdio allows remote authenticated users to launch the Python debugger, and consequently execute arbitrary code, by...

MiracleLinux 7 : python3-3.6.8-17.el7 (AXSA:2020-630:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-630:02 advisory. python: XSS vulnerability in the documentation XML-RPC server in servertitle field CVE-2019-16935 python: wrong backtracking in...

MiracleLinux 8 : python-rtslib-2.1.73-2.el8 (AXEA:2021-1213:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXEA:2021-1213:01 advisory. - Open-iSCSI rtslib-fb through 2.1.72 has weak permissions for /etc/target/saveconfig.json because shutil.copyfile instead of shutil.copy is used, and thus...

MiracleLinux 4 : libxml2-2.7.6-21.1.0.2.AXS4 (AXSA:2021-2481:04)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2481:04 advisory. libxml2: Use after free via namespace node in XPointer ranges CVE-2016-4658 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : python-pillow-5.1.1-18.el8 (AXSA:2022-3080:02)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3080:02 advisory. python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions CVE-2022-22817 python-pillow: buffer over-read during initialization of...

MiracleLinux 8 : python-jinja2-2.10.1-3.el8 (AXSA:2021-2728:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-2728:01 advisory. python-jinja2: ReDoS vulnerability due to the sub-pattern CVE-2020-28493 Tenable has extracted the preceding description block directly from the MiracleLinux...

Exploit for CVE-2014-0075

CVE-2014-0075PoC T...

CVE-2026-0863

Using string formatting and exception handling, an attacker may bypass n8n's python-task-executor sandbox restrictions and run arbitrary unrestricted Python code in the underlying operating system. The vulnerability can be exploited via the Code block by an authenticated user with basic permissio...

CVE-2026-0863 Sandbox escape in n8n Python task runner allows for arbitrary code execution on the underlying host.

Using string formatting and exception handling, an attacker may bypass n8n's python-task-executor sandbox restrictions and run arbitrary unrestricted Python code in the underlying operating system. The vulnerability can be exploited via the Code block by an authenticated user with basic permissio...

CVE-2026-0863

Using string formatting and exception handling, an attacker may bypass n8n's python-task-executor sandbox restrictions and run arbitrary unrestricted Python code in the underlying operating system. The vulnerability can be exploited via the Code block by an authenticated user with basic permissio...

CVE-2026-0863

CVE-2026-0863 affects n8n’s python-task-executor sandbox. A crafted payload via the Code block, by an authenticated user with basic permissions, can bypass sandbox restrictions through string formatting and exception handling, enabling arbitrary Python code execution on the host in Internal execu...

akasha-plus (>=0.3.0 <=0.3.17), akasha-terminal (>=0.8.0 <=0.8.72) +18 more potentially affected by CVE-2025-15536 via opencc (>=1.1.1 <=1.1.9)

opencc PYPI version =1.1.1, =0.3.0, =0.8.0, =0.1.0, =1.1.0, =0.0.1, =1.0.0, =0.1.0, =0.1.0, =0.1.0, =0.1.2 and more Source cves: CVE-2025-15536 Source advisory: SNYK:PYTHON-OPENCC-15874419...

PT-2026-3396

Name of the Vulnerable Software and Affected Versions n8n versions prior to 1.123.14 n8n versions prior to 2.3.5 n8n versions prior to 2.4.2 Description An issue exists in n8n that allows an attacker to bypass the python-task-executor sandbox restrictions. This bypass is achieved through the use ...