Lucene search
K
PypaMost viewed

5631 matches found

PyPA
PyPA
•added 2020/03/16 4:15 p.m.•7 views

PYSEC-2020-7

A flaw was found in the Ansible Engine when the fetch module is used. An attacker could intercept the module, inject a new path, and then choose a new destination path on the controller node. All versions in 2.7.x, 2.8.x and 2.9.x branches are believed to be vulnerable...

4.6CVSS6.5AI score0.00487EPSS
Exploits1References7Affected Software1
PyPA
PyPA
•added 2020/03/16 3:15 p.m.•7 views

PYSEC-2020-210

A security flaw was found in Ansible Engine, all Ansible 2.7.x versions prior to 2.7.17, all Ansible 2.8.x versions prior to 2.8.11 and all Ansible 2.9.x versions prior to 2.9.7, when managing kubernetes using the k8s module. Sensitive parameters such as passwords and tokens are passed to kubectl...

5.5CVSS6.8AI score0.00506EPSS
Exploits1References7Affected Software1
PyPA
PyPA
•added 2020/03/15 10:15 p.m.•7 views

PYSEC-2020-40

An issue was discovered in drf-jwt 1.15.x before 1.15.1. It allows attackers with access to a notionally invalidated token to obtain a new, working token via the refresh endpoint, because the blacklist protection mechanism is incompatible with the token-refresh feature. NOTE: drf-jwt is a fork of...

9.1CVSS6.9AI score0.01257EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2020/03/13 10:15 p.m.•7 views

PYSEC-2020-219

In wagtail-2fa before 1.4.1, any user with access to the CMS can view and delete other users 2FA devices by going to the correct path. The user does not require special permissions in order to do so. By deleting the other users device they can disable the target users 2FA devices and potentially...

8.5CVSS6.8AI score0.00805EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2020/03/12 6:15 p.m.•7 views

PYSEC-2020-11

A flaw was found in Ansible 2.7.16 and prior, 2.8.8 and prior, and 2.9.5 and prior when a password is set with the argument "password" of svn module, it is used on svn command line, disclosing to other users within the same node. An attacker could take advantage by reading the cmdline file from...

3.9CVSS6.8AI score0.00358EPSS
Exploits0References7Affected Software1
PyPA
PyPA
•added 2020/02/20 3:15 p.m.•7 views

PYSEC-2020-200

The vault subsystem in Ansible before 1.5.5 does not set the umask before creation or modification of a vault file, which allows local users to obtain sensitive key information by reading a file...

5.5CVSS6.2AI score0.00415EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2020/02/18 3:15 p.m.•7 views

PYSEC-2020-204

Ansible before 1.6.7 does not prevent inventory data with "" and "lookup" substrings, and does not prevent remote data with "" substrings, which allows remote attackers to execute arbitrary code via 1 crafted lookup'pipe' calls or 2 crafted Jinja2 data...

9.8CVSS8.1AI score0.03521EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2020/01/30 9:15 p.m.•7 views

PYSEC-2020-212

Multiple cross-site scripting XSS vulnerabilities in Roundup before 1.4.20 allow remote attackers to inject arbitrary web script or HTML via the 1 @okmessage or 2 @errormessage parameter to issue...

6.1CVSS6AI score0.01546EPSS
Exploits1References6Affected Software1
PyPA
PyPA
•added 2020/01/28 4:15 p.m.•7 views

PYSEC-2020-211

packet.py in pyrad before 2.1 uses weak random numbers to generate RADIUS authenticators and hash passwords, which makes it easier for remote attackers to obtain sensitive information via a brute force attack...

5.9CVSS6.5AI score0.02833EPSS
Exploits0References9Affected Software1
PyPA
PyPA
•added 2020/01/22 7:15 p.m.•7 views

PYSEC-2020-178

Waitress through version 1.3.1 allows request smuggling by sending the Content-Length header twice. Waitress would header fold a double Content-Length header and due to being unable to cast the now comma separated value to an integer would set the Content-Length to 0 internally. If two...

7.5CVSS6.8AI score0.02122EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2020/01/14 7:15 p.m.•7 views

PYSEC-2020-146

TUF aka The Update Framework 0.7.2 through 0.12.1 allows Uncontrolled Resource Consumption...

5.3CVSS7AI score0.01403EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2020/01/09 1:15 p.m.•7 views

PYSEC-2020-198

Ansible prior to 1.5.4 mishandles the evaluation of some strings...

7.5CVSS6.9AI score0.0118EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2020/01/03 1:15 a.m.•7 views

PYSEC-2020-81

libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer overflow, related to realloc...

8.8CVSS6.9AI score0.01975EPSS
Exploits0References6Affected Software1
PyPA
PyPA
•added 2019/12/26 11:15 p.m.•7 views

PYSEC-2019-112

In Archery before 1.3, inserting an XSS payload into a project name either by creating a new project or editing an existing one will result in stored XSS on the vulnerability-scan scheduling page...

5.4CVSS6.2AI score0.00761EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2019/12/18 6:15 p.m.•7 views

PYSEC-2019-254

In Tautulli 2.1.9, CSRF in the /shutdown URI allows an attacker to shut down the remote media server. Also, anonymous access can be achieved in applications that do not have a user login area...

6.5CVSS7AI score0.14706EPSS
Exploits9References7Affected Software1
PyPA
PyPA
•added 2019/12/16 9:15 p.m.•7 views

PYSEC-2019-227

In TensorFlow before 1.15, a heap buffer overflow in UnsortedSegmentSum can be produced when the Index template argument is int32. In this case datasize and numsegments fields are truncated from int64 to int32 and can produce negative numbers, resulting in accessing out of bounds heap memory. Thi...

9.8CVSS7.4AI score0.00777EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2019/12/10 3:15 p.m.•7 views

PYSEC-2019-161

python-keystoneclient version 0.2.3 to 0.2.5 has middleware memcache signing bypass...

9.8CVSS7AI score0.01696EPSS
Exploits1References10Affected Software1
PyPA
PyPA
•added 2019/12/10 3:15 p.m.•7 views

PYSEC-2019-197

python-keystoneclient version 0.2.3 to 0.2.5 has middleware memcache encryption bypass...

9.8CVSS7AI score0.01764EPSS
Exploits1References9Affected Software1
PyPA
PyPA
•added 2019/12/09 9:15 p.m.•7 views

PYSEC-2019-154

The CreateID function in packet.py in pyrad before 2.1 uses sequential packet IDs, which makes it easier for remote attackers to spoof packets by predicting the next ID, a different vulnerability than CVE-2013-0294...

5.9CVSS7AI score0.02833EPSS
Exploits0References8Affected Software1
PyPA
PyPA
•added 2019/11/29 5:15 p.m.•7 views

PYSEC-2019-135

When using wagtail-2fa before 1.3.0, if someone gains access to someone's Wagtail login credentials, they can log into the CMS and bypass the 2FA check by changing the URL. They can then add a new device and gain full access to the CMS. This problem has been patched in version 1.3.0...

8.8CVSS7AI score0.01162EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2019/11/27 8:15 a.m.•7 views

PYSEC-2019-168

A flaw was found in IPA, all 4.6.x versions before 4.6.7, all 4.7.x versions before 4.7.4 and all 4.8.x versions before 4.8.3, in the way that FreeIPA's batch processing API logged operations. This included passing user passwords in clear text on FreeIPA masters. Batch processing of commands with...

6.5CVSS6.6AI score0.01412EPSS
Exploits0References9Affected Software1
PyPA
PyPA
•added 2019/11/27 8:15 a.m.•7 views

PYSEC-2019-22

A flaw was found in IPA, all 4.6.x versions before 4.6.7, all 4.7.x versions before 4.7.4 and all 4.8.x versions before 4.8.3, in the way that FreeIPA's batch processing API logged operations. This included passing user passwords in clear text on FreeIPA masters. Batch processing of commands with...

6.5CVSS6.6AI score0.01412EPSS
Exploits0References8Affected Software1
PyPA
PyPA
•added 2019/11/26 2:15 p.m.•7 views

PYSEC-2019-146

ansible before versions 2.8.6, 2.7.14, 2.6.20 is vulnerable to a None...

6.5CVSS6.9AI score0.01649EPSS
Exploits0References5Affected Software1
PyPA
PyPA
•added 2019/11/25 4:15 p.m.•7 views

PYSEC-2019-3

A flaw was found in ansible 2.8.0 before 2.8.4. Fields managing sensitive data should be set as such by nolog feature. Some of these fields in GCP modules are not set properly. serviceaccountcontents which is common class for all gcp modules is not setting nolog to True. Any sensitive data manage...

6.5CVSS6.5AI score0.01853EPSS
Exploits1References6Affected Software1
PyPA
PyPA
•added 2019/11/22 3:15 p.m.•7 views

PYSEC-2019-243

Designate does not enforce the DNS protocol limit concerning record set sizes...

6.5CVSS7AI score0.01593EPSS
Exploits0References6Affected Software1
PyPA
PyPA
•added 2019/11/16 1:15 a.m.•7 views

PYSEC-2019-102

Eval injection in the Math plugin of Limnoria before 2019.11.09 and Supybot through 2018-05-09 allows remote unprivileged attackers to disclose information or possibly have unspecified other impact via the calc and icalc IRC commands...

9.8CVSS7.8AI score0.0171EPSS
Exploits0References6Affected Software1
PyPA
PyPA
•added 2019/11/12 2:15 a.m.•7 views

PYSEC-2019-41

psutil aka python-psutil through 5.6.5 can have a double free. This occurs because of refcount mishandling within a while or for loop that converts system data into a Python object...

7.5CVSS9.1AI score0.03522EPSS
Exploits0References6Affected Software1
PyPA
PyPA
•added 2019/11/07 6:15 p.m.•7 views

PYSEC-2019-253

Tahoe-LAFS 1.9.0 fails to ensure integrity which allows remote attackers to corrupt mutable files or directories upon retrieval...

7.4CVSS7AI score0.01714EPSS
Exploits1References14Affected Software1
PyPA
PyPA
•added 2019/10/16 12:15 p.m.•7 views

PYSEC-2019-117

ReportLab through 3.5.26 allows remote code execution because of toColorevalarg in colors.py, as demonstrated by a crafted XML document with '...

9.8CVSS8.1AI score0.10231EPSS
Exploits1References14Affected Software1
PyPA
PyPA
•added 2019/10/14 2:15 a.m.•7 views

PYSEC-2019-241

GDAL through 3.0.1 has a poolDestroy double free in OGRExpatRealloc in ogr/ogrexpat.cpp when the 10MB threshold is exceeded...

9.8CVSS7.2AI score0.02577EPSS
Exploits0References15Affected Software1
PyPA
PyPA
•added 2019/10/11 11:15 p.m.•7 views

PYSEC-2019-151

sendemail in graphite-web/webapp/graphite/composer/views.py in Graphite through 1.1.5 is vulnerable to SSRF. The vulnerable SSRF endpoint can be used by an attacker to have the Graphite web server request any resource. The response to this SSRF request is encoded into an image file and then sent ...

7.5CVSS7.1AI score0.16948EPSS
Exploits1References6Affected Software1
PyPA
PyPA
•added 2019/10/09 7:15 p.m.•7 views

PYSEC-2019-247

Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimageint.cpp, because there is no validation of the relationship of the total size to the offset and size...

6.5CVSS6.8AI score0.01851EPSS
Exploits0References6Affected Software1
PyPA
PyPA
•added 2019/10/03 8:15 p.m.•7 views

PYSEC-2019-118

In RPyC 4.1.x through 4.1.1, a remote attacker can dynamically modify object attributes to construct a remote procedure call that executes code for an RPyC service with default configuration settings...

7.5CVSS7.2AI score0.13049EPSS
Exploits2References6Affected Software1
PyPA
PyPA
•added 2019/09/11 3:15 p.m.•7 views

PYSEC-2019-238

An issue was discovered in py-lmdb 0.97. mdbnodedel does not validate a memmove in the case of an unexpected node-mnhi, leading to an invalid write operation. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker...

7.5CVSS7AI score0.01543EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2019/09/11 3:15 p.m.•7 views

PYSEC-2019-236

An issue was discovered in py-lmdb 0.97. For certain values of mdflags, mdbnodeadd does not properly set up a memcpy destination, leading to an invalid write operation. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker...

9.8CVSS7AI score0.01765EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2019/09/11 3:15 p.m.•7 views

PYSEC-2019-237

An issue was discovered in py-lmdb 0.97. For certain values of mpflags, mdbpagetouch does not properly set up mc-mcpgmc-top, leading to an invalid write operation. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker...

9.8CVSS7AI score0.01765EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2019/09/11 3:15 p.m.•7 views

PYSEC-2019-239

An issue was discovered in py-lmdb 0.97. For certain values of mnflags, mdbcursorset triggers a memcpy with an invalid write operation within mdbxcursorinit1. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker...

9.8CVSS7AI score0.01963EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2019/08/26 6:15 p.m.•7 views

PYSEC-2019-144

An issue was discovered in the arrayfire crate before 3.6.0 for Rust. Addition of the repr attribute to an enum is mishandled, leading to memory corruption...

9.8CVSS7AI score0.01645EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2019/08/23 5:15 p.m.•7 views

PYSEC-2019-23

All versions of the HTTPie package prior to version 1.0.3 are vulnerable to Open Redirect that allows an attacker to write an arbitrary file with supplied filename and content to the current directory, by redirecting a request from HTTP to a crafted URL pointing to a server in his or hers control...

8.8CVSS7AI score0.02045EPSS
Exploits1References6Affected Software1
PyPA
PyPA
•added 2019/08/23 1:15 p.m.•7 views

PYSEC-2019-19

django-js-reverse aka Django JS Reverse before 0.9.1 has XSS via jsreverseinline...

6.1CVSS6.2AI score0.01025EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2019/08/22 5:15 p.m.•7 views

PYSEC-2019-178

When the Elastic APM agent for Python versions before 5.1.0 is run as a CGI script, there is a variable name clash flaw if a remote attacker can control the proxy header. This could result in an attacker redirecting collected APM data to a proxy of their choosing...

7.2CVSS6.8AI score0.0151EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2019/08/09 7:15 p.m.•7 views

PYSEC-2019-191

An issue was discovered in OpenStack Nova before 17.0.12, 18.x before 18.2.2, and 19.x before 19.0.2. If an API request from an authenticated user ends in a fault condition due to an external exception, details of the underlying environment may be leaked in the response, and could include sensiti...

6.5CVSS6.7AI score0.01927EPSS
Exploits0References8Affected Software1
PyPA
PyPA
•added 2019/08/07 5:15 p.m.•7 views

PYSEC-2019-114

Prior to Spark 2.3.3, in certain situations Spark would write user data to local disk unencrypted, even if spark.io.encryption.enabled=true. This includes cached blocks that are fetched to disk controlled by spark.maxRemoteBlockSizeFetchToMem; in SparkR, using parallelize; in Pyspark, using...

7.5CVSS6.6AI score0.01291EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2019/08/02 3:15 p.m.•7 views

PYSEC-2019-12

An issue was discovered in Django 1.11.x before 1.11.23, 2.1.x before 2.1.11, and 2.2.x before 2.2.4. Due to the behaviour of the underlying HTMLParser, django.utils.html.striptags would be extremely slow to evaluate certain inputs containing large sequences of nested incomplete HTML entities...

7.5CVSS6.9AI score0.03172EPSS
Exploits0References11Affected Software1
PyPA
PyPA
•added 2019/07/30 5:15 p.m.•7 views

PYSEC-2019-152

A vulnerability was found in openstack-ironic-inspector all versions excluding 5.0.2, 6.0.3, 7.2.4, 8.0.3 and 8.2.1. A SQL-injection vulnerability was found in openstack-ironic-inspector's nodecache.findnode. This function makes a SQL query using unfiltered data from a server reporting inspection...

9.1CVSS7.2AI score0.02464EPSS
Exploits0References8Affected Software1
PyPA
PyPA
•added 2019/07/19 4:15 p.m.•7 views

PYSEC-2019-120

scapy 2.4.0 is affected by: Denial of Service. The impact is: infinite loop, resource consumption and program unresponsive. The component is: RADIUSAttrPacketListField.getfieldself... The attack vector is: over the network or in a pcap. both work...

7.5CVSS6.9AI score0.02791EPSS
Exploits1References7Affected Software1
PyPA
PyPA
•added 2019/07/16 12:15 a.m.•7 views

PYSEC-2019-170

An issue was discovered in python-engineio through 3.8.2. There is a Cross-Site WebSocket Hijacking CSWSH vulnerability that allows attackers to make WebSocket connections to a server by using a victim's credentials, because the Origin header is not restricted...

8.8CVSS6.9AI score0.00828EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2019/07/15 3:15 a.m.•7 views

PYSEC-2019-218

libnmap v0.6.3 is affected by: XML Injection. The impact is: Denial of service DoS by consuming resources. The component is: XML Parsing. The attack vector is: Specially crafted XML payload...

7.5CVSS7AI score0.01553EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2019/07/01 2:15 p.m.•7 views

PYSEC-2019-10

An issue was discovered in Django 1.11 before 1.11.22, 2.1 before 2.1.10, and 2.2 before 2.2.3. An HTTP request is not redirected to HTTPS when the SECUREPROXYSSLHEADER and SECURESSLREDIRECT settings are used, and the proxy connects to Django via HTTPS. In other words,...

5.3CVSS7AI score0.01697EPSS
Exploits0References13Affected Software1
PyPA
PyPA
•added 2019/06/27 2:15 p.m.•7 views

PYSEC-2019-103

KeyIdentity LinOTP before 2.10.5.3 has Incorrect Access Control issue 1 of 2...

8.1CVSS7AI score0.01164EPSS
Exploits0References2Affected Software1
Total number of security vulnerabilities5000