Lucene search
K

58366 matches found

Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.1 views

RockyLinux 8 : python39:3.9 and python39-devel:3.9 (RLSA-2023:2764)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:2764 advisory. python: int type in PyLongFromString does not limit amount of digits converting text to int leading to DoS CVE-2020-10735 python: open redirection...

7.5CVSS7AI score0.03213EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.7 views

RHEL 9 : python3.9 (RHSA-2025:23342)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:23342 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level...

6.5CVSS6.6AI score0.00744EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.3 views

EulerOS Virtualization 2.13.1 : protobuf (EulerOS-SA-2025-2559)

According to the versions of the protobuf packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Any project that uses Protobuf Pure-Python backend to parse untrusted Protocol Buffers data containing an arbitrary number of...

8.2CVSS6.8AI score0.00281EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.3 views

EulerOS Virtualization 2.13.0 : protobuf (EulerOS-SA-2025-2594)

According to the versions of the protobuf packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Any project that uses Protobuf Pure-Python backend to parse untrusted Protocol Buffers data containing an arbitrary number of...

8.2CVSS6.8AI score0.00281EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2025/12/18 12:0 a.m.5 views

python3.12 security update

3.12.12-1.0.1 - Remove upstream URL reference 3.12.12-1 - Update to 3.12.12 Resolves: RHEL-125856...

4.3CVSS7AI score0.00345EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.1 views

EulerOS Virtualization 2.13.0 : python-urllib3 (EulerOS-SA-2025-2598)

According to the versions of the python-urllib3 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : urllib3 is a user-friendly HTTP client library for Python. Prior to 2.5.0, it is possible to disable redirects for all...

6.1CVSS6.2AI score0.004EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.21 views

EulerOS Virtualization 2.13.1 : python-pip (EulerOS-SA-2025-2561)

According to the versions of the python-pip packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Requests is a HTTP library. Due to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third...

5.3CVSS6.9AI score0.00846EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.4 views

EulerOS Virtualization 2.13.0 : python-requests (EulerOS-SA-2025-2597)

According to the versions of the python-requests package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Requests is a HTTP library. Due to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to...

5.3CVSS6.9AI score0.00846EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.4 views

EulerOS Virtualization 2.13.1 : python-requests (EulerOS-SA-2025-2562)

According to the versions of the python-requests package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Requests is a HTTP library. Due to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to...

5.3CVSS6.9AI score0.00846EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.3 views

EulerOS Virtualization 2.13.0 : python-pip (EulerOS-SA-2025-2596)

According to the versions of the python-pip packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Requests is a HTTP library. Due to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third...

5.3CVSS6.9AI score0.00846EPSS
Exploits1References2
Packet Storm News
Packet Storm News
added 2025/12/18 12:0 a.m.19 views

A Systematic Study of Code Obfuscation against LLM-Based Vulnerability Detection

As large language models LLMs are increasingly adopted for code vulnerability detection, their reliability and robustness across diverse vulnerability types have become a pressing concern. In traditional adversarial settings, code obfuscation has long been used as a general strategy to bypass...

7.2AI score
Exploits0
OpenVAS
OpenVAS
added 2025/12/18 12:0 a.m.4 views

Fedora: Security Advisory (FEDORA-2025-45ee190318)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.6AI score0.1914EPSS
Exploits14References4
OpenVAS
OpenVAS
added 2025/12/18 12:0 a.m.6 views

Fedora: Security Advisory (FEDORA-2025-24dfd3b072)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.6AI score0.1914EPSS
Exploits14References2
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.5 views

Fedora 42 : python-django5 (2025-45ee190318)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-45ee190318 advisory. - Fixes CVE-2025-13372: Potential SQL injection in FilteredRelation column aliases on PostgreSQL - Fixes CVE-2025-64460: Potential denial-of-service...

9.8CVSS8.2AI score0.1914EPSS
Exploits14References7
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.1 views

RHEL 9 : python3.12 (RHSA-2025:23323)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:23323 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic da...

4.3CVSS6.9AI score0.00345EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2025/12/18 12:0 a.m.3 views

Fedora: Security Advisory (FEDORA-2025-b1379d950d)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.6AI score0.1914EPSS
Exploits14References4
Github Security Blog
Github Security Blog
added 2025/12/17 6:31 p.m.10 views

Duplicate Advisory: python-jose denial of service via compressed JWE content

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-cjwg-qfpm-7377. This link is maintained to preserve external references. Original Description In python-jose 3.3.0 specifically jwe.decrypt, a vulnerability allows an attacker to cause a Denial-of-Service DoS...

5.3CVSS6.8AI score0.00166EPSS
Exploits1References6Affected Software1
EUVD
EUVD
added 2025/12/17 6:31 p.m.4 views

EUVD-2024-26380

In python-jose 3.3.0 specifically jwe.decrypt, a vulnerability allows an attacker to cause a Denial-of-Service DoS condition by crafting a malicious JSON Web Encryption JWE token with an exceptionally high compression ratio. When this token is processed by the server, it results in significant...

5.3CVSS6.3AI score0.00166EPSS
Exploits1References2
OSV
OSV
added 2025/12/17 6:31 p.m.4 views

GHSA-H4PW-WXH7-4VJJ Duplicate Advisory: python-jose denial of service via compressed JWE content

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-cjwg-qfpm-7377. This link is maintained to preserve external references. Original Description In python-jose 3.3.0 specifically jwe.decrypt, a vulnerability allows an attacker to cause a Denial-of-Service DoS...

5.3CVSS6.7AI score0.00166EPSS
Exploits1References5
EUVD
EUVD
added 2025/12/17 5:56 p.m.2 views

EUVD-2025-203913

Malicious code in trondec PyPI...

6.6AI score
Exploits0References2
Rows per page
Query Builder