47 matches found
EUVD-2008-5953
Malware in sbrugna...
EUVD-2020-7784
Malware in sbrugna...
OESA-2025-2323 python-pyinstaller security update
PyInstaller bundles a Python application and all its dependencies into a single package. The user can run the packaged app without installing a Python interpreter or any modules. Security Fixes: Due to a special entry being appended to sys.path during the bootstrap process of a PyInstaller-frozen...
BIT-PYTHON-MIN-2020-15801
In Python 3.8.4, sys.path restrictions specified in a python38.pth file are ignored, allowing code to be loaded from arbitrary locations. The .pth file e.g., the python.pth file is not affected...
BIT-PYTHON-2020-15801
In Python 3.8.4, sys.path restrictions specified in a python38.pth file are ignored, allowing code to be loaded from arbitrary locations. The .pth file e.g., the python.pth file is not affected...
Security Bulletin: Security Vulnerabilities affect IBM Cloud Pak for Data - Python (CVE-2020-15801)
Summary Security Vulnerabilities affect IBM Cloud Pak for Data - Python CVE-2020-15801 Vulnerability Details CVEID: CVE-2020-15801 DESCRIPTION: Python could allow a local attacker to execute arbitrary code on the system, caused by an issue with sys.path restrictions specified in a python38.pth fi...
Python <= 3.8.4 Arbitrary Code Execution Vulnerability - Windows
Python is prone to an arbitrary code execution vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-15801
In Python 3.8.4, sys.path restrictions specified in a python38.pth file are ignored, allowing code to be loaded from arbitrary locations. The .pth file e.g., the python.pth file is not affected...
CVE-2020-15801
In Python 3.8.4, sys.path restrictions specified in a python38.pth file are ignored, allowing code to be loaded from arbitrary locations. The .pth file e.g., the python.pth file is not affected...
CVE-2020-15801
In Python 3.8.4, sys.path restrictions specified in a python38.pth file are ignored, allowing code to be loaded from arbitrary locations. The .pth file e.g., the python.pth file is not affected...
Code injection
In Python 3.8.4, sys.path restrictions specified in a python38.pth file are ignored, allowing code to be loaded from arbitrary locations. The .pth file e.g., the python.pth file is not affected...
CVE-2020-15801
In Python 3.8.4, sys.path restrictions specified in a python38.pth file are ignored, allowing code to be loaded from arbitrary locations. The .pth file e.g., the python.pth file is not affected...
CVE-2020-15801
In Python 3.8.4, sys.path restrictions specified in a python38.pth file are ignored, allowing code to be loaded from arbitrary locations. The .pth file e.g., the python.pth file is not affected...
CVE-2020-15801
In Python 3.8.4, sys.path restrictions specified in a python38.pth file are ignored, allowing code to be loaded from arbitrary locations. The .pth file e.g., the python.pth file is not affected...
CVE-2020-15801
CVE-2020-15801 (Siemens SIMATIC S7-1500) : The Tenable plugin for Tenable OT documents a vulnerability affecting the SIMATIC S7-1500 family (CPU 1518-4 PN/DP MFP, SIPLUS variants) with all versions prior to V3.1.0. The issue stems from Python 3.8.4 behavior: sys.path restrictions in python38._pth...
PT-2020-6992 · Python +1 · Python +1
Name of the Vulnerable Software and Affected Versions: Python version 3.8.4 Description: The issue is related to the python38. pth file, where sys.path restrictions are ignored, allowing code to be loaded from arbitrary locations. This could potentially enable a remote attacker to execute arbitra...
CVE-2015-1341
Any Python module in sys.path can be imported if the command line of the process triggering the coredump is Python and the first argument is -m in Apport before 2.19.2 function pythonmodulepath...
Command injection
Any Python module in sys.path can be imported if the command line of the process triggering the coredump is Python and the first argument is -m in Apport before 2.19.2 function pythonmodulepath...
CVE-2015-1341 Apport privilege escalation through Python module imports
Any Python module in sys.path can be imported if the command line of the process triggering the coredump is Python and the first argument is -m in Apport before 2.19.2 function pythonmodulepath...
CVE-2015-1341
Summary (CVE-2015-1341) : The Ubuntu/apport vulnerability allows a local attacker to escalate privileges by abusing Python module imports. Specifically, if the triggering process runs Python with the first argument -m and triggers a coredump, any Python module on sys.path could be imported by App...