Lucene search
K

15 matches found

OSV
OSV
added 2 days ago10 views

BIT-PYTHON-MIN-2026-12003 CPython >3.11 Insecure Input Validation resulting in privilege escalation

To allow builds of Python to be run from an in-tree layout rather than an installed file layout, the VPATH variable is defined at build time and used to locate certain landmarks - specifically, Modules/setup.local. When this landmark is found relative to VPATH relative to the executable, Python...

5.3CVSS5.4AI score0.00136EPSS
Exploits0References9
OSV
OSV
added 2 days ago6 views

BIT-PYTHON-2026-12003 CPython >3.11 Insecure Input Validation resulting in privilege escalation

To allow builds of Python to be run from an in-tree layout rather than an installed file layout, the VPATH variable is defined at build time and used to locate certain landmarks - specifically, Modules/setup.local. When this landmark is found relative to VPATH relative to the executable, Python...

5.3CVSS5.5AI score0.00136EPSS
Exploits0References9
OSV
OSV
added 2 days ago7 views

BIT-LIBPYTHON-2026-12003 CPython >3.11 Insecure Input Validation resulting in privilege escalation

To allow builds of Python to be run from an in-tree layout rather than an installed file layout, the VPATH variable is defined at build time and used to locate certain landmarks - specifically, Modules/setup.local. When this landmark is found relative to VPATH relative to the executable, Python...

5.3CVSS5.4AI score0.00136EPSS
Exploits0References9
NVD
NVD
added 2026/06/16 5:16 p.m.13 views

CVE-2026-12003

To allow builds of Python to be run from an in-tree layout rather than an installed file layout, the VPATH variable is defined at build time and used to locate certain landmarks - specifically, Modules/setup.local. When this landmark is found relative to VPATH relative to the executable, Python...

5.3CVSS0.00136EPSS
Exploits0References8
OSV
OSV
added 2026/06/16 5:16 p.m.5 views

DEBIAN-CVE-2026-12003

To allow builds of Python to be run from an in-tree layout rather than an installed file layout, the VPATH variable is defined at build time and used to locate certain landmarks - specifically, Modules/setup.local. When this landmark is found relative to VPATH relative to the executable, Python...

5.3CVSS5.3AI score0.00136EPSS
Exploits0References1
OSV
OSV
added 2026/06/16 3:18 p.m.6 views

PSF-2026-28

To allow builds of Python to be run from an in-tree layout rather than an installed file layout, the VPATH variable is defined at build time and used to locate certain landmarks - specifically, Modules/setup.local. When this landmark is found relative to VPATH relative to the executable, Python...

5.3CVSS5.4AI score0.00136EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/06/16 3:18 p.m.28 views

CVE-2026-12003 CPython >3.11 Insecure Input Validation resulting in privilege escalation

To allow builds of Python to be run from an in-tree layout rather than an installed file layout, the VPATH variable is defined at build time and used to locate certain landmarks - specifically, Modules/setup.local. When this landmark is found relative to VPATH relative to the executable, Python...

5.3CVSS0.00136EPSS
Exploits0References7
CVE
CVE
added 2026/06/16 3:18 p.m.44 views

CVE-2026-12003

Technical details are not publicly available in the provided documents. Monitor for updates.

5.3CVSS5.5AI score0.00136EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.12 views

PT-2026-49724

Name of the Vulnerable Software and Affected Versions Python affected versions not specified Description On Windows, Python uses the VPATH variable to locate landmarks, such as 'Modules/setup.local', to determine if it is running in a source tree and adjust the default sys.path. In certain...

5.3CVSS5.2AI score0.00136EPSS
Exploits0References25
VulnCheck KEV
VulnCheck KEV
added 2024/01/22 12:0 a.m.5 views

VulnCheck KEV: CVE-2021-45092

Thinfinity VirtualUI before 3.0 has functionality in /lab.html reachable by default that could allow IFRAME injection via the vpath parameter...

9.8CVSS7.3AI score0.39973EPSS
Exploits3References1
OSV
OSV
added 2021/12/16 4:15 a.m.6 views

CVE-2021-45092

Thinfinity VirtualUI before 3.0 has functionality in /lab.html reachable by default that could allow IFRAME injection via the vpath parameter...

9.8CVSS5.8AI score0.39973EPSS
Exploits3References2
NVD
NVD
added 2021/12/16 4:15 a.m.34 views

CVE-2021-45092

Thinfinity VirtualUI before 3.0 has functionality in /lab.html reachable by default that could allow IFRAME injection via the vpath parameter...

9.8CVSS0.39973EPSS
Exploits3References2
Prion
Prion
added 2021/12/16 4:15 a.m.16 views

Design/Logic Flaw

Thinfinity VirtualUI before 3.0 has functionality in /lab.html reachable by default that could allow IFRAME injection via the vpath parameter...

7.5CVSS9.5AI score0.39973EPSS
Exploits3References2Affected Software1
Cvelist
Cvelist
added 2021/12/16 3:7 a.m.39 views

CVE-2021-45092

Thinfinity VirtualUI before 3.0 has functionality in /lab.html reachable by default that could allow IFRAME injection via the vpath parameter...

9.8AI score0.39973EPSS
Exploits3References2
CNNVD
CNNVD
added 2021/12/16 12:0 a.m.7 views

Cybele Software Thinfinity VirtualUI 安全漏洞

Cybele Software Thinfinity VirtualUI is a solution from Cybele Software that supports embedding remote Windows applications into standard Web applications, allowing two-way interaction with Javascript programming. A security vulnerability exists in Cybele Software Thinfinity VirtualUI versions...

9.8CVSS8.4AI score0.39973EPSS
Exploits3References5
Rows per page
Query Builder