Lucene search
K

12 matches found

Github Security Blog
Github Security Blog
added 2026/04/27 3:30 p.m.14 views

pip Vulnerable to Inclusion of Functionality from Untrusted Control Sphere

pip prior to version 26.1 would run self-update check functionality after installing wheel files which required importing well-known Python modules names. These module imports were intentionally deferred to increase startup time of the pip CLI. The patch changes self-update functionality to run...

5.3CVSS5.8AI score0.00138EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/27 12:0 a.m.6 views

PT-2026-35435

Name of the Vulnerable Software and Affected Versions pip versions prior to 26.1 Description The self-update check functionality runs after installing wheel files, which requires importing well-known Python module names. These imports were deferred to improve the startup time of the pip CLI. This...

5.8CVSS6.7AI score0.00144EPSS
Exploits0References119
RedhatCVE
RedhatCVE
added 2026/03/26 3:9 p.m.4 views

CVE-2026-33429

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.54 and 9.6.0-alpha.43, an attacker can subscribe to LiveQuery with a watch parameter targeting a protected field. Although the protected field value is properly stripped...

6.3CVSS5.7AI score0.00316EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/02 12:0 a.m.4 views

PT-2025-3173 · Adwork Media · Adwork Media Ez Content Locker

Name of the Vulnerable Software and Affected Versions: AdWork Media EZ Content Locker versions n/a through 3.0 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Reflected XSS in AdWork Media EZ...

7.1CVSS9.1AI score0.00333EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2024/03/08 12:0 a.m.27 views

opencryptoki security update

3.21.0-9 - timing side-channel in handling of RSA PKCS1 v1.5 padded ciphertexts Marvin Resolves: RHEL-22792...

5.9CVSS7.3AI score0.00878EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/12/29 12:0 a.m.15 views

SUSE: Security Advisory (SUSE-SU-2023:4986-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7.1AI score0.01257EPSS
Exploits0References4
OSV
OSV
added 2023/12/13 8:15 a.m.5 views

CVE-2023-47536

An improper access control vulnerability CWE-284 in FortiOS version 7.2.0, version 7.0.13 and below, version 6.4.14 and below and FortiProxy version 7.2.3 and below, version 7.0.9 and below, version 2.0.12 and below may allow a remote unauthenticated attacker to bypass the firewall deny...

5.3CVSS5.8AI score0.00567EPSS
Exploits0References1
OSV
OSV
added 2023/04/26 3:31 p.m.2 views

SUSE-SU-2023:2047-1 Security update for openssl-ibmca

This update for openssl-ibmca fixes the following issues: - Fixed a timing-based side channel attack in RSA in the IBMCA engine openssl-ibmca...

7.1AI score
Exploits0References2
Microsoft KB
Microsoft KB
added 2019/10/15 12:0 a.m.9 views

October 15, 2019—KB4520062 (OS Build 17763.832)

None None...

6.1AI score
Exploits0
Microsoft KB
Microsoft KB
added 2019/08/19 12:0 a.m.9 views

August 19, 2019—KB4512509 (OS Build 17134.984)

None None...

6.1AI score
Exploits0
Microsoft KB
Microsoft KB
added 2019/06/26 12:0 a.m.9 views

June 26, 2019—KB4509478 (OS Build 17134.860)

None None...

6.1AI score
Exploits0
OSV
OSV
added 2018/12/06 1:33 p.m.6 views

SUSE-SU-2018:4001-1 Security update for openssl-1_0_0

This update for openssl-100 fixes the following issues: Security issues fixed: - CVE-2018-0734: Fixed timing vulnerability in DSA signature generation bsc1113652. - CVE-2018-5407: Added elliptic curve scalar multiplication timing attack defenses that fixes 'PortSmash' bsc1113534. Non-security...

5.9CVSS5.7AI score0.12154EPSS
Exploits4References8
Rows per page
Query Builder