Fedora 43 : python-biopython (2026-186829baee)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-186829baee advisory. - Initial fix for security bug CVE-2025-68463 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

[SECURITY] [DSA 6102-1] python-urllib3 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6102-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 17, 2026 https://www.debian.org/security/faq -...

Updated python-urllib3 packages fix security vulnerabilities

urllib3 allows an unbounded number of links in the decompression chain. CVE-2025-66418 urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects streaming API. CVE-2026-21441...

CVE-2025-68664 vulnerabilities

Vulnerabilities for packages: py3-langchain...

Many Hands Make Light Work: An LLM-Based Multi-Agent System for Detecting Malicious PyPI Packages

Malicious code in open-source repositories such as PyPI poses a growing threat to software supply chains. Traditional rule-based tools often overlook the semantic patterns in source code that are crucial for identifying adversarial components. Large language models LLMs show promise for software...

DSA-6102-1 python-urllib3 - security update

Bulletin has no description...

Debian dsa-6102 : python3-urllib3 - security update

The remote Debian 12 / 13 host has a package installed that is affected by multiple vulnerabilities as referenced in the dsa-6102 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6102-1 [email protected]...

SUSE SLES12 Security Update : python (SUSE-SU-2026:0133-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0133-1 advisory. - CVE-2025-8291: check validity of the ZIP64 End of Central Directory EOCD in the 'zipfile' module bsc1251305. - CVE-2025-12084: prevent...

Exploit for Path Traversal in Apache Http_Server

🛑 CVE-2021-41773 Checker CVE-2021-41773 Checker is a Python-b...

0lever-utils (>=0.0.2 <=0.0.7), a2grunnerp (>=0.1.0 <=0.1.8) +755 more potentially affected by CVE-2026-23490 via pyasn1 (>=0.1.7 <=0.6.1)

pyasn1 PYPI version =0.1.7, =0.0.2, =0.1.0, =0.4.0, =0.4.0, =0.1.1, =0.0.5, =0.4.0, =0.0.2, =0.87.2.dev9, =0.30.1, =0.1.0.dev19, =1.3.0, =0.1.0, =0.1.3 and more Source cves: CVE-2026-23490 Source advisory: SNYK:PYTHON-PYASN1-15032639...

[SECURITY] Fedora 42 Update: python3.12-3.12.12-2.fc42

Python 3.12 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.12 package provides the "python3.12" executable:...

Security Bulletin: Multiple security vulnerabilities in Python affect IBM Robotic Process Automation

Summary Multiple security vulnerabilities in Python affect IBM Robotic Process Automation. Python is used by IBM Robotic Process Automation as part of Watson NLP. This bulletin identifies the fixes to resolve the vulnerabilities. Vulnerability Details CVEID:CVE-2025-8747 DESCRIPTION: A safe mode...

apetest (>=0.1.0 <=0.1.1), mccole (>=0.2.0 <=5.3.0) potentially affected by CVE-2025-15104 via html5validator (>=0.3.3 <=0.4.2)

html5validator PYPI version =0.3.3, =0.1.0, =0.2.0, =5.3.0 Source cves: CVE-2025-15104 Source advisory: SNYK:PYTHON-HTML5VALIDATOR-15010792...

SUSE-SU-2026:0133-1 Security update for python

This update for python fixes the following issues: - CVE-2025-8291: check validity of the ZIP64 End of Central Directory EOCD in the 'zipfile' module bsc1251305. - CVE-2025-12084: prevent quadratic behavior in node ID cache clearing bsc1254997. - CVE-2025-13836: prevent reading an HTTP response...

Cisco Patches Zero-Day RCE Exploited by China-Linked APT in Secure Email Gateways

Cisco on Thursday released security updates for a maximum-severity security flaw impacting Cisco AsyncOS Software for Cisco Secure Email Gateway and Cisco Secure Email and Web Manager, nearly a month after the company disclosed that it had been exploited as a zero-day by a China-nexus advanced...

Crawl4AI is Vulnerable to Remote Code Execution in Docker API via Hooks Parameter

A critical remote code execution vulnerability exists in the Crawl4AI Docker API deployment. The /crawl endpoint accepts a hooks parameter containing Python code that is executed using exec. The import builtin was included in the allowed builtins, allowing attackers to import arbitrary modules an...

PT-2026-7855

Name of the Vulnerable Software and Affected Versions Crawl4AI versions prior to 0.8.0 Description Crawl4AI is affected by a remote code execution issue in the Docker API deployment. The /crawl endpoint accepts a hooks parameter containing Python code that is executed using exec. The inclusion of...

python311-virtualenv-20.36.1-1.1 on GA media (moderate)

python311-virtualenv-20.36.1-1.1 on GA media Announcement ID: openSUSE-SU-2026:10055-1 Rating: moderate Cross-References: CVE-2025-68146 CVE-2026-22702 CVSS scores: CVE-2025-68146 SUSE : 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N CVE-2025-68146 SUSE : 5.7...

Crawl4AI is Vulnerable to Remote Code Execution in Docker API via Hooks Parameter

A critical remote code execution vulnerability exists in the Crawl4AI Docker API deployment. The /crawl endpoint accepts a hooks parameter containing Python code that is executed using exec. The import builtin was included in the allowed builtins, allowing attackers to import arbitrary modules an...

MiracleLinux 7 : python-2.7.5-38.0.1.el7.AXS7 (AXSA:2016-650:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2016-650:01 advisory. Python is an interpreted, interactive, object-oriented programming language often compared to Tcl, Perl, Scheme or Java. Python includes modules, classes,...