Lucene search
K

58384 matches found

Fedora
Fedora
added 2025/12/20 1:23 a.m.5 views

[SECURITY] Fedora 42 Update: python-unicodedata2-17.0.0-1.fc42

This module provides access to the Unicode Character Database UCD which defines character properties for all Unicode characters. The data contained in this database is compiled from the UCD version 13.0.0. The versions of this package match Unicode versions, so unicodedata2=3D=3D13. 0.0 is data...

9.8CVSS6.9AI score0.00496EPSS
Exploits9
Fedora
Fedora
added 2025/12/20 1:23 a.m.8 views

[SECURITY] Fedora 42 Update: fonttools-4.61.0-1.fc42

fontTools is a library for manipulating fonts, written in Python. The project includes the TTX tool, that can convert TrueType and OpenType fonts to and fr om an XML text format, which is also called TTX. It supports TrueType, OpenType, AFM and to an extent Type 1 and some Mac-specific formats...

9.8CVSS7AI score0.00496EPSS
Exploits9
SUSE CVE
SUSE CVE
added 2025/12/20 12:51 a.m.4 views

SUSE CVE-2024-29370

In python-jose 3.3.0 specifically jwe.decrypt, a vulnerability allows an attacker to cause a Denial-of-Service DoS condition by crafting a malicious JSON Web Encryption JWE token with an exceptionally high compression ratio. When this token is processed by the server, it results in significant...

5.3CVSS6.8AI score0.00166EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/12/20 12:0 a.m.5 views

Fedora 42 : fonttools / python-unicodedata2 (2025-58e2bb0f1e)

The remote Fedora 42 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-58e2bb0f1e advisory. Update to 17.0.0 version 2412270 Update fonttools 4.61.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. No...

9.8CVSS7.3AI score0.00496EPSS
Exploits9References2
OSV
OSV
added 2025/12/20 12:0 a.m.4 views

OPENSUSE-SU-2025:15838-1 python311-tornado6-6.5.4-1.1 on GA media

These are all security issues fixed in the python311-tornado6-6.5.4-1.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS7.1AI score0.00396EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/12/19 9:14 p.m.6 views

CVE-2025-13911

The vulnerability affects Ignition SCADA applications where Python scripting is utilized for automation purposes. The vulnerability arises from the absence of proper security controls that restrict which Python libraries can be imported and executed within the scripting environment. The core issu...

7.3CVSS7AI score0.00221EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/12/19 8:44 p.m.12 views

Security Bulletin: There are multiple vulnerabilities that can affect IBM Fusion

Summary Multiple vulnerabilities affecting IBM Fusion and IBM Fusion HCI could have resulted in reduced security. These issues have since been resolved. CVE-2025-7969, CVE-2025-66221, CVE-2025-65945, CVE-2025-6493, CVE-2025-64756, CVE-2025-64118, CVE-2025-62727, CVE-2025-59952, CVE-2025-5889,...

9.1CVSS6.1AI score0.1686EPSS
Exploits9Affected Software3
EUVD
EUVD
added 2025/12/19 8:42 p.m.3 views

EUVD-2025-204617

Malicious code in system-health-check-test-unique PyPI...

6.6AI score
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/12/19 8:17 p.m.8 views

Security Bulletin: IBM Storage Ceph is vulnerable to a Rogue Session Attack and Rogue Extension Negotiation in python-asyncssh (CVE-2023-46446, CVE-2023-46445)

Summary python-asyncssh is used by IBM Storage Ceph as an asynchronous client and server implementation of the SSHv2 protocol. CVE-2023-46446, CVE-2023-46445 Vulnerability Details CVEID:CVE-2023-46446 DESCRIPTION: An issue in AsyncSSH before 2.14.1 allows attackers to control the remote end of an...

6.8CVSS6.7AI score0.00867EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/12/19 8:16 p.m.6 views

Security Bulletin: IBM Storage Ceph is vulnerable to Improper Validation of Integrity Check Value in python-asyncssh (CVE-2023-48795)

Summary python-asyncss is used by IBM Storage Ceph ias an asynchronous client and server implementation of the SSHv2 protocol. CVE-2023-48795 Vulnerability Details CVEID:CVE-2023-48795 DESCRIPTION: The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other...

5.9CVSS6.6AI score0.93305EPSS
Exploits4Affected Software1
OSV
OSV
added 2025/12/19 2:26 p.m.3 views

ROOT-OS-DEBIAN-12-CVE-2025-8869 CVE-2025-8869 in rootio-python-pip - Patched by Root

Root has patched CVE-2025-8869 in the rootio-python-pip package for Root:Debian:12. Multiple fixed versions available...

5.9CVSS5.4AI score0.00438EPSS
Exploits0
OSV
OSV
added 2025/12/19 10:9 a.m.4 views

RHSA-2025:23323 Red Hat Security Advisory: python3.12 security update

Bulletin has no description...

4.3CVSS6.9AI score0.00345EPSS
Exploits0References13
Rockylinux
Rockylinux
added 2025/12/19 9:5 a.m.3 views

python3.12 security update

An update is available for python3.12. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Python is an interpreted, interactive, object-oriented programming languag...

4.3CVSS6.9AI score0.00345EPSS
Exploits0
Rockylinux
Rockylinux
added 2025/12/19 9:5 a.m.7 views

python3.9 security update

An update is available for python3.9. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Python is an interpreted, interactive, object-oriented programming language...

6.5CVSS6.7AI score0.00744EPSS
Exploits0
OSV
OSV
added 2025/12/19 9:5 a.m.5 views

RLSA-2025:23323 Moderate: python3.12 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

4.3CVSS6.8AI score0.00345EPSS
Exploits0References2
OSV
OSV
added 2025/12/19 9:5 a.m.5 views

RLSA-2025:23342 Moderate: python3.9 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

4.3CVSS6.6AI score0.00744EPSS
Exploits0References5
EUVD
EUVD
added 2025/12/19 8:23 a.m.2 views

EUVD-2025-204525

Malicious code in connections-api-hidden-runner PyPI...

6.6AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/12/19 8:23 a.m.10 views

Malicious code in hidden-powershell-runner-ax7 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 5785c01837ec1727b89125cf1a3fec3ad941c4ff0b1246d8d16fec1dff53223a Importing the module downloads and starts remote executable identified as malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like...

7.1AI score
Exploits0References2
EUVD
EUVD
added 2025/12/19 8:23 a.m.3 views

EUVD-2025-204526

Malicious code in hidden-powershell-runner-ax7 PyPI...

6.6AI score
Exploits0References2
OSV
OSV
added 2025/12/19 8:23 a.m.2 views

MAL-2025-192659 Malicious code in hidden-powershell-runner-ax7 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 5785c01837ec1727b89125cf1a3fec3ad941c4ff0b1246d8d16fec1dff53223a Importing the module downloads and starts remote executable identified as malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like...

7AI score
Exploits0References2
Rows per page
Query Builder