Lucene search
K

58367 matches found

Positive Technologies
Positive Technologies
added 2025/12/16 12:0 a.m.9 views

PT-2025-51355

Name of the Vulnerable Software and Affected Versions Fickling versions prior to 0.1.6 Description Fickling, a Python pickling decompiler and static analyzer, contained a bypass related to missing unsafe module imports. Specifically, the pty module was not included in the block list, leading to...

8.5CVSS6.4AI score0.00235EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2025/12/16 12:0 a.m.4 views

PT-2025-51772

PyMdown Extensions is a set of extensions for the Python-Markdown markdown project. Versions prior to 10.16.1 have a ReDOS bug found within the figure caption extension pymdownx.blocks.caption. In systems that take unchecked user content, this could cause long hanges when processing the data if a...

6.9CVSS6.6AI score0.00356EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/12/16 12:0 a.m.1 views

SUSE SLES12: libpython3_4m1_0 / libpython3_4m1_0-32bit / python3 / python3-base / etc (SUSE-SU-2025:4398-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4398-1 advisory. Security issues fixed: - CVE-2025-6075: Fixed simple quadratic complexity vulnerabilities on os.path.expandvars bsc1252974. - CVE-2025-8291:...

5.5CVSS6.3AI score0.00345EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/12/16 12:0 a.m.3 views

Fedora 42 : python3.14 (2025-d5dffbf048)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-d5dffbf048 advisory. This is the second maintenance release of Python 3.14 Tenable has extracted the preceding description block directly from the Fedora security...

6.3CVSS6.8AI score0.00696EPSS
Exploits0References4
OSV
OSV
added 2025/12/16 12:0 a.m.5 views

ALSA-2025:23342 Moderate: python3.9 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

6.5CVSS7.3AI score0.00744EPSS
Exploits0References10
OSV
OSV
added 2025/12/16 12:0 a.m.4 views

DLA-4408-1 python-apt - security update

Bulletin has no description...

6.9CVSS6.9AI score0.00122EPSS
Exploits1
AlmaLinux
AlmaLinux
added 2025/12/16 12:0 a.m.7 views

Moderate: python3.12 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

4.3CVSS6.9AI score0.00345EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2025/12/16 12:0 a.m.3 views

Moderate: python3.9 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

6.5CVSS6.7AI score0.00744EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2025/12/16 12:0 a.m.5 views

Debian: Security Advisory (DLA-4408-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS6.5AI score0.00122EPSS
Exploits1References2
OSV
OSV
added 2025/12/16 12:0 a.m.5 views

ALSA-2025:23323 Moderate: python3.12 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

4.3CVSS6.7AI score0.00345EPSS
Exploits0References4
Debian
Debian
added 2025/12/15 7:52 p.m.10 views

[SECURITY] [DLA 4408-1] python-apt security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-4408-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta December 16, 2025 https://wiki.debian.org/LTS -...

6.9CVSS6.9AI score0.00122EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/12/15 4:38 p.m.7 views

CVE-2025-66418

urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links in the decompression chain was unbounded allowing a malicious server to insert a virtually unlimited number of compression steps leading to high CPU usage and massive memory...

8.9CVSS6.7AI score0.00622EPSS
Exploits0References5
CBLMariner
CBLMariner
added 2025/12/15 4:3 p.m.4 views

CVE-2025-6075 affecting package python3 for versions less than 3.12.9-6

CVE-2025-6075 affecting package python3 for versions less than 3.12.9-6. A patched version of the package is available...

5.5CVSS6.9AI score0.00136EPSS
Exploits0
EUVD
EUVD
added 2025/12/15 3:24 p.m.4 views

EUVD-2025-203387

Malicious code in smtblib PyPI...

6.6AI score
Exploits0References1
OSV
OSV
added 2025/12/15 3:24 p.m.5 views

MAL-2025-192579 Malicious code in smtblib (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 15a295f1d98fcbbdd6a077bc3a849966ca3f73919c0d47e58948ff382481e5b6 Malicious copy of a standard library module that during class initialization downloads and executes remote code and after that attempts to cover its tracks by...

7.5AI score
Exploits0References2
vulnersOsv
vulnersOsv
added 2025/12/15 2:15 p.m.5 views

aleksis (>=2022.6.0.post0 <=2023.6.1), aleksis-app-alsijil (>=2.0.0 <=3.0.1) +96 more potentially affected by CVE-2025-65430 via django-allauth (>=0.24.1 <=65.12.1)

django-allauth PYPI version =0.24.1, =2022.6.0.post0, =2.0.0, =1.0.0, =2.0.0, =2.1.0, =2.0.0, =1.0.0.dev0, =0.1.0, =2.0.0, =2.0.0, =0.1.0, =2.0.0, =1.0.0, =0.1.1, =2.0.0.dev0, =2.0.0.dev2 and more Source cves: CVE-2025-65430 Source advisory: OSV:PYSEC-2025-110...

5.4CVSS5.7AI score0.00138EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/12/15 2:15 p.m.7 views

aleksis (>=2022.6.0.post0 <=2023.6.1), aleksis-app-alsijil (>=2.0.0 <=3.0.1) +96 more potentially affected by CVE-2025-65431 via django-allauth (>=0.24.1 <=65.12.1)

django-allauth PYPI version =0.24.1, =2022.6.0.post0, =2.0.0, =1.0.0, =2.0.0, =2.1.0, =2.0.0, =1.0.0.dev0, =0.1.0, =2.0.0, =2.0.0, =0.1.0, =2.0.0, =1.0.0, =0.1.1, =2.0.0.dev0, =2.0.0.dev2 and more Source cves: CVE-2025-65431 Source advisory: OSV:PYSEC-2025-111...

5.4CVSS5.7AI score0.00141EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/12/15 1:25 p.m.4 views

CVE-2025-6966

A flaw was found in python-apt. This vulnerability allows a local attacker to cause a denial of service Denial of Service process crash via a crafted deb822 file with a malformed non-UTF-8 key. Mitigation Mitigation for this issue is either not available or the currently available options do not...

6.9CVSS5.4AI score0.00122EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/12/15 11:30 a.m.5 views

Security update for python3

This update for python3 fixes the following issues: Security issues fixed: CVE-2025-6075: Fixed simple quadratic complexity vulnerabilities on os.path.expandvars bsc1252974. CVE-2025-8291: Fixed missing validity checks of the ZIP64 End of Central Directory EOCD bsc1251305. Other issues fixed: Add...

4.8CVSS7AI score0.00345EPSS
Exploits0References8
OSV
OSV
added 2025/12/15 11:30 a.m.4 views

SUSE-SU-2025:4398-1 Security update for python3

This update for python3 fixes the following issues: Security issues fixed: - CVE-2025-6075: Fixed simple quadratic complexity vulnerabilities on os.path.expandvars bsc1252974. - CVE-2025-8291: Fixed missing validity checks of the ZIP64 End of Central Directory EOCD bsc1251305. Other issues fixed:...

5.5CVSS5.8AI score0.00345EPSS
Exploits0References5
Rows per page
Query Builder