Lucene search
K

7 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/09/27 3:16 a.m.4 views

Security Bulletin: Passing a heavily nested list to sqlparse.parse() leads to a Denial of Service due to RecursionError.

Summary Passing a heavily nested list to sqlparse.parse leads to a Denial of Service due to RecursionError. Vulnerability Details CVEID:CVE-2024-4340 DESCRIPTION: Passing a heavily nested list to sqlparse.parse leads to a Denial of Service due to RecursionError. CWE:CWE-674: Uncontrolled Recursio...

7.5CVSS6.5AI score0.0321EPSS
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/03 12:0 a.m.7 views

The vulnerability of the sqlparse.parse() function in the SQL parser module for Python, Sqlparse, allows a hacker to cause a service failure.

The vulnerability of the sqlparse.parse function in the SQL parser module for Python, Sqlparse, is related to an uncontrolled recursion during the processing of deeply nested lists. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.8CVSS7.3AI score0.0321EPSS
Exploits0References10Affected Software12
SUSE CVE
SUSE CVE
added 2024/05/01 3:25 a.m.3 views

SUSE CVE-2024-4340

Passing a heavily nested list to sqlparse.parse leads to a Denial of Service due to RecursionError...

7.5CVSS6.9AI score0.0321EPSS
Exploits0References5
OSV
OSV
added 2024/04/30 3:15 p.m.2 views

DEBIAN-CVE-2024-4340

Passing a heavily nested list to sqlparse.parse leads to a Denial of Service due to RecursionError...

7.5CVSS7.2AI score0.0321EPSS
Exploits0References1
OSV
OSV
added 2024/04/30 3:15 p.m.1 views

UBUNTU-CVE-2024-4340

Passing a heavily nested list to sqlparse.parse leads to a Denial of Service due to RecursionError...

7.5CVSS7.1AI score0.0321EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/04/30 12:0 a.m.5 views

sqlparse 安全漏洞

sqlparse is Python's non-validating SQL parser. It provides support for parsing, splitting, and formatting SQL statements. A security vulnerability exists in sqlparse that stems from an application passing a nested list to sqlparse.parse, resulting in a denial of service...

7.5CVSS8AI score0.0321EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/04/15 12:0 a.m.5 views

PT-2024-10474 · Pypi +4 · Sqlparse +4

Name of the Vulnerable Software and Affected Versions: sqlparse affected versions not specified Description: The issue is related to the sqlparse.parse function, which can lead to a Denial of Service due to a RecursionError when processing a heavily nested list. This can be exploited by a remote...

7.8CVSS7.5AI score0.0321EPSS
Exploits0References50
Rows per page
Query Builder