Lucene search
+L

385 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.9 views

EUVD-2019-0158

Malware in sbrugna...

8.2CVSS6.1AI score0.02587EPSS
Exploits0References19
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-0156

Malware in sbrugna...

7.5CVSS6.1AI score0.02714EPSS
Exploits1References16
euvd
euvd
added 2025/10/07 12:30 a.m.10 views

EUVD-2020-0239

Malware in sbrugna...

7.5CVSS6AI score0.02122EPSS
Exploits0References10
euvd
euvd
added 2025/10/03 8:7 p.m.9 views

EUVD-2024-0188

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.01386EPSS
Exploits0References7
euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-0187

Malicious code in bioql PyPI...

9.1CVSS6.2AI score0.00496EPSS
Exploits0References4
euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-0359

Malicious code in bioql PyPI...

6.5CVSS6.2AI score0.01342EPSS
Exploits1References7
euvd
euvd
added 2025/10/03 8:7 p.m.9 views

EUVD-2022-0358

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.0178EPSS
Exploits0References14
redos
redos
added 2025/09/22 12:0 a.m.3 views

ROS-20250922-10

A vulnerability in the getpeername function of the WSGI server for python Waitress is related to the non-release of a resource after a valid exploitation period has expired. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS6.8AI score0.01386EPSS
Exploits0
nessus
nessus
added 2025/08/18 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2019-16789

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Waitress through version 1.4.0, if a proxy server is used in front of waitress, an invalid request may be sent by an attacker that bypasses the front-end and...

8.2CVSS6.3AI score0.02587EPSS
Exploits0References2
nessus
nessus
added 2025/08/18 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2019-16785

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Waitress through version 1.3.1 implemented a MAY part of the RFC7230 which states: Although the line terminator for the start-line and header fields is the...

7.5CVSS6.3AI score0.02714EPSS
Exploits1References2
nessus
nessus
added 2025/08/18 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2019-16792

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Waitress through version 1.3.1 allows request smuggling by sending the Content-Length header twice. Waitress would header fold a double Content-Length header an...

7.5CVSS6.3AI score0.02122EPSS
Exploits0References2
nessus
nessus
added 2025/08/18 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2019-16786

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Waitress through version 1.3.1 would parse the Transfer-Encoding header and only look for a single string value, if that value was not chunked it would fall...

7.5CVSS6.7AI score0.02545EPSS
Exploits0References2
ibm
ibm
added 2025/07/01 5:59 p.m.66 views

Security Bulletin: Waitress WSGI Server Vulnerability: HTTP Pipelining Request Handling with Disabled Lookahead

Summary Waitress is a Web Server Gateway Interface server for Python 2 and 3. A remote client may send a request that is exactly recvbytes defaults to 8192 long, followed by a secondary request using HTTP pipelining. When request lookahead is disabled default we won't read any more requests, and...

9.1CVSS7AI score0.00496EPSS
Exploits0Affected Software1
openvas
openvas
added 2025/05/26 12:0 a.m.4 views

Fedora: Security Advisory (FEDORA-2024-157678aad0)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.1AI score0.01386EPSS
Exploits0References5
opensuse
opensuse
added 2025/05/18 12:0 a.m.4 views

python311-waitress-3.0.2-1.4 on GA media (moderate)

python311-waitress-3.0.2-1.4 on GA media Announcement ID: openSUSE-SU-2025:15108-1 Rating: moderate Cross-References: CVE-2022-24761 CVE-2022-31015 CVSS scores: CVE-2022-24761 SUSE : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVE-2022-31015 SUSE : 5.3...

7.5CVSS7.5AI score0.0178EPSS
Exploits1
osv
osv
added 2025/05/17 12:0 a.m.4 views

OPENSUSE-SU-2025:15108-1 python311-waitress-3.0.2-1.4 on GA media

These are all security issues fixed in the python311-waitress-3.0.2-1.4 package on the GA media of openSUSE Tumbleweed...

7.5CVSS7.4AI score0.0178EPSS
Exploits1References3
cbl_mariner
cbl_mariner
added 2025/05/15 9:13 p.m.8 views

CVE-2022-24761 affecting package python-waitress for versions less than 3.0.1-1

CVE-2022-24761 affecting package python-waitress for versions less than 3.0.1-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.9AI score0.0178EPSS
Exploits0
cbl_mariner
cbl_mariner
added 2025/05/15 9:13 p.m.26 views

CVE-2022-31015 affecting package python-waitress for versions less than 3.0.1-1

CVE-2022-31015 affecting package python-waitress for versions less than 3.0.1-1. An upgraded version of the package is available that resolves this issue...

6.5CVSS6.9AI score0.01342EPSS
Exploits1
cbl_mariner
cbl_mariner
added 2025/05/15 9:13 p.m.10 views

CVE-2024-49769 affecting package python-waitress for versions less than 3.0.1-1

CVE-2024-49769 affecting package python-waitress for versions less than 3.0.1-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.9AI score0.01386EPSS
Exploits0
bdu_fstec
bdu_fstec
added 2025/05/06 12:0 a.m.7 views

The vulnerability of the getpeername() function in the WSGI server for Python Waitress allows a attacker to cause a service failure.

The vulnerability of the getpeername function in the WSGI server for Python Waitress is related to the failure to release resources after their useful period has ended. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...

7.8CVSS7.1AI score0.01386EPSS
Exploits0References11Affected Software4
Rows per page
Query Builder