CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

20 matches found

IBM Security Bulletins•added 2026/01/30 5:39 a.m.•12 views

Security Bulletin: IBM Edge Data Collector uses Python package - setuptools which is vulnerable to CVE-2025-47273, CVE-2024-6345.

Summary IBM Edge Data Collector uses Python package - setuptools which is vulnerable to CVE-2025-47273, CVE-2024-6345. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2025-47273 DESCRIPTION: setuptools is a package that allows users ...

8.8CVSS6.6AI score0.07521EPSS

Exploits4Affected Software1

F5 Networks•added 2025/06/23 6:27 p.m.•6 views

K000152019: Python Setup Tools vulnerability CVE-2024-6345

Security Advisory Description A vulnerability in the packageindex module of pypa/setuptools versions up to 69.1.1 allows for remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers,...

8.8CVSS8.1AI score0.07521EPSS

Exploits0

Tenable Nessus•added 2025/04/13 12:0 a.m.•4 views

CBL Mariner 2.0 Security Update: python-setuptools / python3 (CVE-2024-6345)

The version of python-setuptools / python3 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-6345 advisory. - A vulnerability in the packageindex module of pypa/setuptools versions up to 69.1.1 allo...

8.8CVSS7.6AI score0.07521EPSS

Exploits0References2

OpenVAS•added 2024/11/11 12:0 a.m.•12 views

Huawei EulerOS: Security Advisory for python-setuptools (EulerOS-SA-2024-2820)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.1AI score0.07521EPSS

Exploits0References2

Tenable Nessus•added 2024/09/18 12:0 a.m.•80 views

Amazon Linux 2 : python2-setuptools (ALAS-2024-2632)

The version of python2-setuptools installed on the remote host is prior to 41.2.0-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2632 advisory. A vulnerability in the packageindex module of pypa/setuptools versions up to 69.1.1 allows for remote code execution vi...

8.8CVSS7.7AI score0.07521EPSS

Exploits0References4

OSV•added 2024/08/03 7:36 a.m.•13 views

BIT-SETUPTOOLS-2024-6345 Remote Code Execution in pypa/setuptools

A vulnerability in the packageindex module of pypa/setuptools versions up to 69.1.1 allows for remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to code...

8.8CVSS8.1AI score0.07521EPSS

Exploits0References5

SUSE CVE•added 2024/07/19 2:53 a.m.•1 views

SUSE CVE-2024-6345

7CVSS9.3AI score0.07521EPSS

Exploits0References25

RedhatCVE•added 2024/07/15 3:34 a.m.•125 views

CVE-2024-6345

A flaw was found in the packageindex module of pypa/setuptools. Affected versions of this package allow remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to co...

8.8CVSS9.1AI score0.07521EPSS

Exploits0References5

Github Security Blog•added 2024/07/15 3:30 a.m.•92 views

setuptools vulnerable to Command Injection via package URL

8.8CVSS9.2AI score0.07521EPSS

Exploits0References6Affected Software1

OSV•added 2024/07/15 3:30 a.m.•37 views

GHSA-CX63-2MW6-8HW5 setuptools vulnerable to Command Injection via package URL

8.8CVSS8.1AI score0.07521EPSS

Exploits0References6

OSV•added 2024/07/15 1:15 a.m.•1 views

ALPINE-CVE-2024-6345

8.8CVSS8.7AI score0.07521EPSS

Exploits0References1

OSV•added 2024/07/15 1:15 a.m.•32 views

CVE-2024-6345

8.8CVSS8.3AI score

Exploits0References3

OSV•added 2024/07/15 1:15 a.m.•3 views

AZL-43326 CVE-2024-6345 affecting package python-pip for versions less than 24.2-1

8.8CVSS7.7AI score0.07521EPSS

Exploits0References1

OSV•added 2024/07/15 1:15 a.m.•1 views

DEBIAN-CVE-2024-6345

8.8CVSS7.9AI score0.07521EPSS

Exploits0References1

NVD•added 2024/07/15 1:15 a.m.•43 views

CVE-2024-6345

8.8CVSS0.07521EPSS

Exploits0References3

UbuntuCve•added 2024/07/15 1:15 a.m.•31 views

CVE-2024-6345

8.8CVSS7.7AI score0.07521EPSS

Exploits0References4

Cvelist•added 2024/07/15 12:0 a.m.•52 views

CVE-2024-6345 Remote Code Execution in pypa/setuptools

8.8CVSS0.07521EPSS

Exploits0References2

Debian CVE•added 2024/07/15 12:0 a.m.•26 views

CVE-2024-6345

8.8CVSS7.9AI score0.07521EPSS

Exploits0

Vulnrichment•added 2024/07/15 12:0 a.m.•56 views

CVE-2024-6345 Remote Code Execution in pypa/setuptools

8.8CVSS8.5AI score0.07521EPSS

Exploits0References2

CVE•added 2024/07/15 12:0 a.m.•417 views

CVE-2024-6345

CVE-2024-6345 affects the setuptools package_index module in setuptools versions up to 69.1.1, enabling remote code execution through user-controlled package download inputs. The vulnerability stems from download functions that can be fed URLs from users or index servers, allowing arbitrary comma...

8.8CVSS8.2AI score0.07521EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by