CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

129 matches found

CNNVD•added 2023/04/18 12:0 a.m.•2 views

sqlparse 安全漏洞

sqlparse is Python's non-validating SQL parser. It provides support for parsing, splitting and formatting SQL statements. A security vulnerability exists in sqlparse version 0.1.15 and later. An attacker could exploit this vulnerability to cause a denial of service...

7.5CVSS6.7AI score0.01264EPSS

Exploits0References12

SUSE CVE•added 2023/02/15 3:40 a.m.•1 views

SUSE CVE-2021-32839

sqlparse is a non-validating SQL parser module for Python. In sqlparse versions 0.4.0 and 0.4.1 there is a regular Expression Denial of Service in sqlparse vulnerability. The regular expression may cause exponential backtracking on strings containing many repetitions of '\r\n' in SQL comments. On...

6.5CVSS7.8AI score0.00122EPSS

Exploits0References5

OpenVAS•added 2022/01/28 12:0 a.m.•10 views

Ubuntu: Security Advisory (USN-5085-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.00122EPSS

Exploits0References2

OpenVAS•added 2021/12/02 12:0 a.m.•17 views

openSUSE: Security Advisory for python-sqlparse (openSUSE-SU-2021:3857-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.7AI score0.00122EPSS

Exploits0References2

OpenVAS•added 2021/12/02 12:0 a.m.•20 views

SUSE: Security Advisory (SUSE-SU-2021:3857-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.00122EPSS

Exploits0References2

Tenable Nessus•added 2021/12/02 12:0 a.m.•16 views

SUSE SLED15 / SLES15 Security Update : python-sqlparse (SUSE-SU-2021:3857-1)

The remote SUSE Linux SLED15 / SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2021:3857-1 advisory. - sqlparse is a non-validating SQL parser module for Python. In sqlparse versions 0.4.0 and 0.4.1 there is a regular Expression Denial of Servi...

7.5CVSS7.4AI score0.00122EPSS

Exploits0References4

Tenable Nessus•added 2021/12/02 12:0 a.m.•28 views

openSUSE 15 Security Update : python-sqlparse (openSUSE-SU-2021:3857-1)

The remote SUSE Linux SUSE15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE-SU-2021:3857-1 advisory. - sqlparse is a non-validating SQL parser module for Python. In sqlparse versions 0.4.0 and 0.4.1 there is a regular Expression Denial of Service in...

7.5CVSS7.4AI score0.00122EPSS

Exploits0References4

OSV•added 2021/12/01 4:2 p.m.•4 views

OPENSUSE-SU-2021:3857-1 Security update for python-sqlparse

This update for python-sqlparse fixes the following issues: - CVE-2021-32839: Fixed ReDoS via regular expression in StripComments filter bsc1190741...

7.5CVSS7.5AI score0.00122EPSS

Exploits0References3

OSV•added 2021/12/01 4:2 p.m.•4 views

SUSE-SU-2021:3857-1 Security update for python-sqlparse

This update for python-sqlparse fixes the following issues: - CVE-2021-32839: Fixed ReDoS via regular expression in StripComments filter bsc1190741...

7.5CVSS7.6AI score0.00122EPSS

Exploits0References3

OPENSUSE Linux•added 2021/12/01 12:0 a.m.•26 views

Security update for python-sqlparse (moderate)

openSUSE Security Update: Security update for python-sqlparse Announcement ID: openSUSE-SU-2021:3857-1 Rating: moderate References: 1190741 Cross-References: CVE-2021-32839 CVSS scores: CVE-2021-32839 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-32839 SUSE: 6.5...

6.5CVSS7.1AI score0.00122EPSS

Exploits0References1

Tenable Nessus•added 2021/09/22 12:0 a.m.•30 views

Ubuntu 21.04 : SQL parse vulnerability (USN-5085-1)

The remote Ubuntu 21.04 host has packages installed that are affected by a vulnerability as referenced in the USN-5085-1 advisory. It was discovered that SQL parse incorrectly handled certain regular expression. An attacker could possibly use this issue to cause a denial of service. Tenable has...

7.5CVSS7.5AI score0.00122EPSS

Exploits0References2

RedhatCVE•added 2021/09/20 8:8 p.m.•16 views

CVE-2021-32839

A resource-consumption flaw was found in python-sqlparse. The formatter function that strips comments from SQL contains a regular expression that is vulnerable to Regular Expression Denial of Service ReDoS. A network attacker could craft an SQL comment containing numerous repetitions of '\r\n' th...

7.5CVSS1.9AI score0.00122EPSS

Exploits0References3

NVD•added 2021/09/20 5:15 p.m.•7 views

CVE-2021-32839

7.5CVSS0.00122EPSS

Exploits0References3

OSV•added 2021/09/20 5:15 p.m.•1 views

DEBIAN-CVE-2021-32839

7.5CVSS7.4AI score0.00122EPSS

Exploits0References1

Prion•added 2021/09/20 5:15 p.m.•14 views

Design/Logic Flaw

5CVSS7.8AI score0.00122EPSS

Exploits0References2Affected Software1

PyPA•added 2021/09/20 5:15 p.m.•3 views

PYSEC-2021-333

7.5CVSS7.8AI score0.00122EPSS

Exploits0References2Affected Software1

vulnersOsv•added 2021/09/20 5:15 p.m.•1 views

citrinedjangomodule (=1.0.0), cligo (>=1.0.0 <=1.2.1) +24 more potentially affected by CVE-2021-32839 via sqlparse (>=0.4.0 <=0.4.1)

sqlparse PYPI version =0.4.0, =1.0.0, =4.15.0, =1.0.9, =0.0.1, =0.2.0, =0.0.1, =0.14.2, =0.0.6, =0.0.10, =0.0.204 and more Source cves: CVE-2021-32839 Source advisory: OSV:PYSEC-2021-333...

7.5CVSS7AI score0.00122EPSS

Exploits0