CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

129 matches found

Tenable Nessus•added 2023/05/17 12:0 a.m.•31 views

Debian dla-3425 : pypy-sqlparse - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3425 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3425-1 [email protected] https://www.debian.org/lts/security/...

7.5CVSS6.4AI score0.01264EPSS

Exploits0References4

Debian•added 2023/05/16 11:33 a.m.•25 views

[SECURITY] [DLA 3425-1] sqlparse security update

Debian LTS Advisory DLA-3425-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin May 16, 2023 https://wiki.debian.org/LTS Package : sqlparse Version : 0.2.4-1+deb10u1 CVE ID : CVE-2023-30608 Debian Bug : 1034615 Erik Krogh Kristensen discovered that sqlparse, a...

7.5CVSS6.7AI score0.01264EPSS

Exploits0

OSV•added 2023/05/16 12:0 a.m.•26 views

DLA-3425-1 sqlparse - security update

Bulletin has no description...

7.5CVSS6.3AI score0.01264EPSS

Exploits0

OSV•added 2023/05/12 11:5 a.m.•2 views

OESA-2023-1279 python-sqlparse security update

sqlparse is a non-validating SQL parser module. It provides support for parsing, splitting and formatting SQL statements. Security Fixes: sqlparse is a non-validating SQL parser module for Python. In affected versions the SQL parser contains a regular expression that is vulnerable to ReDoS Regula...

7.5CVSS7.7AI score0.01264EPSS

Exploits0References2

OpenVAS•added 2023/05/11 12:0 a.m.•18 views

Ubuntu: Security Advisory (USN-6064-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01264EPSS

Exploits0References2

OSV•added 2023/05/10 11:9 a.m.•0 views

USN-6064-1 sqlparse vulnerability

It was discovered that SQL parse incorrectly handled certain regular expression. An attacker could possibly use this issue to cause a denial of service...

7.5CVSS5.9AI score0.01264EPSS

Exploits0References2

Veracode•added 2023/04/24 11:7 a.m.•24 views

Regular Expression Denial Of Service (ReDoS)

sqlparse is vulnerable to Regular Expression Denial of Service ReDoS. The vulnerability exists due to inefficient regular expression complexity in the lexer.py regex element which allows an attacker to crash the application by submitting maliciously crafted input...

7.5CVSS7.1AI score0.01264EPSS

Exploits0References6Affected Software2

OSV•added 2023/04/21 8:24 p.m.•1 views

GHSA-RRM6-WVJ7-CWH2 sqlparse contains a regular expression that is vulnerable to Regular Expression Denial of Service

Impact The SQL parser contains a regular expression that is vulnerable to ReDoS Regular Expression Denial of Service. The vulnerability may lead to Denial of Service DoS. Patches This issues has been fixed in sqlparse 0.4.4. Workarounds None. References This issue was discovered and reported by...

6.9CVSS5.8AI score0.01264EPSS

Exploits0References9

Github Security Blog•added 2023/04/21 8:24 p.m.•25 views

sqlparse contains a regular expression that is vulnerable to Regular Expression Denial of Service

7.5CVSS6.4AI score0.01264EPSS

Exploits0References9Affected Software1

vulnersOsv•added 2023/04/21 8:24 p.m.•1 views

agnostic (=1.0.3), airflow-dbt-python (>=0.2.0 <=0.14.3) +264 more potentially affected by CVE-2023-30608 via sqlparse (>=0.2.1 <=0.4.3)

sqlparse PYPI version =0.2.1, =0.2.0, =0.8.0, =1.0.0, =0.1.1, =0.7.11, =0.1.0, =0.1.2, =0.0.44, =0.1.0, =0.1.0, =0.5.1 and more Source cves: CVE-2023-30608 Source advisory: OSV:GHSA-RRM6-WVJ7-CWH2...

7.5CVSS6.7AI score0.01264EPSS

Exploits0

SUSE CVE•added 2023/04/20 2:6 a.m.•2 views

SUSE CVE-2023-30608

sqlparse is a non-validating SQL parser module for Python. In affected versions the SQL parser contains a regular expression that is vulnerable to ReDoS Regular Expression Denial of Service. This issue was introduced by commit e75e358. The vulnerability may lead to Denial of Service DoS. This...

5.5CVSS7.6AI score0.01264EPSS

Exploits0References11

OSV•added 2023/04/18 10:15 p.m.•1 views

DEBIAN-CVE-2023-30608

7.5CVSS6.5AI score0.01264EPSS

Exploits0References1

AlpineLinux•added 2023/04/18 10:15 p.m.•28 views

CVE-2023-30608

7.7AI score0.01264EPSS

Exploits0

PyPA•added 2023/04/18 10:15 p.m.•6 views

PYSEC-2023-87

7.5CVSS7.6AI score0.01264EPSS

Exploits0References7Affected Software1

vulnersOsv•added 2023/04/18 10:15 p.m.•0 views

agnostic (=1.0.3), airflow-dbt-python (>=0.2.0 <=0.14.3) +264 more potentially affected by CVE-2023-30608 via sqlparse (>=0.2.1 <=0.4.3)

sqlparse PYPI version =0.2.1, =0.2.0, =0.8.0, =1.0.0, =0.1.1, =0.7.11, =0.1.0, =0.1.2, =0.0.44, =0.1.0, =0.1.0, =0.5.1 and more Source cves: CVE-2023-30608 Source advisory: OSV:PYSEC-2023-87...

7.5CVSS6.7AI score0.01264EPSS

Exploits0

Prion•added 2023/04/18 10:15 p.m.•18 views

Design/Logic Flaw

5CVSS7.5AI score0.01264EPSS

Exploits0References5Affected Software2

OSV•added 2023/04/18 10:15 p.m.•0 views

UBUNTU-CVE-2023-30608

7.5CVSS5.8AI score0.01264EPSS

Exploits0References5

Vulnrichment•added 2023/04/18 9:32 p.m.•2 views

CVE-2023-30608 Parser contains an inefficient regular expression in sqlparse

5.5CVSS7.6AI score0.01264EPSS

Exploits0References5

Debian CVE•added 2023/04/18 9:32 p.m.•26 views

CVE-2023-30608

7.5CVSS7.7AI score0.01264EPSS

Exploits0

Positive Technologies•added 2023/04/18 12:0 a.m.•1 views

PT-2023-3225 · Pypi +6 · Sqlparse +6

Name of the Vulnerable Software and Affected Versions: sqlparse versions prior to 0.4.4 Description: The SQL parser contains a regular expression that is vulnerable to ReDoS Regular Expression Denial of Service. This issue may lead to Denial of Service DoS. The vulnerability was introduced by...

7.8CVSS7.9AI score0.10881EPSS

Exploits0References66

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by