Lucene search
K
PypaMost viewed

5612 matches found

PyPA
PyPA
added 2020/09/25 7:15 p.m.6 views

PYSEC-2020-322

In tensorflow-lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, to mimic Python's indexing with negative values, TFLite uses ResolveAxis to convert negative values to positive indices. However, the only check that the converted index is now valid is only present in debug builds. If the...

9CVSS7.6AI score0.01227EPSS
Exploits1References4Affected Software1
PyPA
PyPA
added 2020/09/25 7:15 p.m.6 views

PYSEC-2020-305

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the tf.rawops.Switch operation takes as input a tensor and a boolean and outputs two tensors. Depending on the boolean value, one of the tensors is exactly the input tensor whereas the other one should be an empty tensor. Howeve...

5.3CVSS6.8AI score0.00943EPSS
Exploits1References4Affected Software1
PyPA
PyPA
added 2020/09/25 7:15 p.m.6 views

PYSEC-2020-314

In Tensorflow before version 2.3.1, the RaggedCountSparseOutput does not validate that the input arguments form a valid ragged tensor. In particular, there is no validation that the splits tensor has the minimum required number of elements. Code uses this quantity to initialize a different data...

5.9CVSS7AI score0.00805EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2020/09/25 7:15 p.m.6 views

PYSEC-2020-320

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the datasplits argument of tf.rawops.StringNGrams lacks validation. This allows a user to pass values that can cause heap overflow errors and even leak contents of memory In the linked code snippet, all the binary strings after ...

9.8CVSS7.3AI score0.01015EPSS
Exploits1References4Affected Software1
PyPA
PyPA
added 2020/09/25 7:15 p.m.6 views

PYSEC-2020-294

In TensorFlow Lite before versions 2.2.1 and 2.3.1, models using segment sum can trigger a write out bounds / segmentation fault if the segment ids are not sorted. Code assumes that the segment ids are in increasing order, using the last element of the tensor holding them to determine the...

8.1CVSS6.9AI score0.00556EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2020/09/25 7:15 p.m.6 views

PYSEC-2020-291

In TensorFlow Lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, saved models in the flatbuffer format use a double indexing scheme: a model has a set of subgraphs, each subgraph has a set of operators and each operator has a set of input/output tensors. The flatbuffer format uses indice...

5.8CVSS7AI score0.00905EPSS
Exploits1References9Affected Software1
PyPA
PyPA
added 2020/09/25 7:15 p.m.6 views

PYSEC-2020-327

In TensorFlow Lite before versions 2.2.1 and 2.3.1, models using segment sum can trigger writes outside of bounds of heap allocated buffers by inserting negative elements in the segment ids tensor. Users having access to segmentidsdata can alter outputindex and then write to outside of outputdata...

8.6CVSS6.9AI score0.0061EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2020/09/25 7:15 p.m.6 views

PYSEC-2020-319

In eager mode, TensorFlow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1 does not set the session state. Hence, calling tf.rawops.GetSessionHandle or tf.rawops.GetSessionHandleV2 results in a null pointer dereference In linked snippet, in eager mode, ctx-sessionstate returns nullptr. Since...

5.3CVSS7.1AI score0.00903EPSS
Exploits1References4Affected Software1
PyPA
PyPA
added 2020/09/25 7:15 p.m.6 views

PYSEC-2020-270

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the tf.rawops.Switch operation takes as input a tensor and a boolean and outputs two tensors. Depending on the boolean value, one of the tensors is exactly the input tensor whereas the other one should be an empty tensor. Howeve...

5.3CVSS6.8AI score0.00943EPSS
Exploits1References4Affected Software1
PyPA
PyPA
added 2020/09/17 2:15 p.m.6 views

PYSEC-2020-19

In Apache Airflow 1.10.12, the "origin" parameter passed to some of the endpoints like '/trigger' was vulnerable to XSS exploit...

6.1CVSS6.4AI score0.25076EPSS
Exploits0References10Affected Software1
PyPA
PyPA
added 2020/09/15 10:15 a.m.6 views

PYSEC-2020-29

A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a "one-shot" decompression request to a script can trigger a crash, which happens when copying over chunks of data larger than 2 GiB. It is recommended to update your Brotli...

6.5CVSS7.3AI score0.03217EPSS
Exploits0References12Affected Software1
PyPA
PyPA
added 2020/09/01 1:15 p.m.6 views

PYSEC-2020-33

An issue was discovered in Django 2.2 before 2.2.16, 3.0 before 3.0.10, and 3.1 before 3.1.1 when Python 3.7+ is used. FILEUPLOADDIRECTORYPERMISSIONS mode was not applied to intermediate-level directories created in the process of uploading files. It was also not applied to intermediate-level...

7.5CVSS6.9AI score0.03969EPSS
Exploits0References12Affected Software1
PyPA
PyPA
added 2020/08/31 4:15 a.m.6 views

PYSEC-2020-43

An issue was discovered in Flask-CORS aka CORS Middleware for Flask before 3.0.9. It allows ../ directory traversal to access private resources because resource matching does not ensure that pathnames are in a canonical format...

7.5CVSS6.9AI score0.04017EPSS
Exploits0References7Affected Software1
PyPA
PyPA
added 2020/08/27 10:15 p.m.6 views

PYSEC-2020-251

The Scalyr Agent before 2.1.10 has Missing SSL Certificate Validation because, in some circumstances, the openssl binary is called without the -verifyhostname option...

9.8CVSS7AI score0.00951EPSS
Exploits1References2Affected Software1
PyPA
PyPA
added 2020/08/14 5:15 p.m.6 views

PYSEC-2020-70

In openapi-python-client before version 0.5.3, there is a path traversal vulnerability. If a user generated a client using a maliciously crafted OpenAPI document, it is possible for generated files to be placed in arbitrary locations on disk...

4.1CVSS6.8AI score0.00944EPSS
Exploits0References4Affected Software1
PyPA
PyPA
added 2020/08/12 4:15 p.m.6 views

PYSEC-2020-24

asyncpg before 0.21.0 allows a malicious PostgreSQL server to trigger a crash or execute arbitrary code on a database client via a crafted server response, because of access to an uninitialized pointer in the array data decoder...

9.8CVSS7.7AI score0.02417EPSS
Exploits0References3Affected Software1
PyPA
PyPA
added 2020/08/11 9:15 p.m.6 views

PYSEC-2020-38

django-celery-results through 1.2.1 stores task results in the database. Among the data it stores are the variables passed into the tasks. The variables may contain sensitive cleartext information that does not belong unencrypted in the database...

7.5CVSS6.7AI score0.00863EPSS
Exploits0References2Affected Software1
PyPA
PyPA
added 2020/07/20 6:15 p.m.6 views

PYSEC-2020-154

In Wagtail before versions 2.7.4 and 2.9.3, when a form page type is made available to Wagtail editors through the wagtail.contrib.forms app, and the page template is built using Django's standard form rendering helpers such as form.asp, any HTML tags used within a form field's help text will be...

5.7CVSS6.2AI score0.01083EPSS
Exploits0References5Affected Software1
PyPA
PyPA
added 2020/07/17 12:15 a.m.6 views

PYSEC-2020-23

An issue was found in Apache Airflow versions 1.10.10 and below. A stored XSS vulnerability was discovered in the Chart pages of the the "classic" UI...

6.1CVSS6.2AI score0.01965EPSS
Exploits0References2Affected Software1
PyPA
PyPA
added 2020/07/14 10:15 p.m.6 views

PYSEC-2020-233

In freewvs before 0.1.1, a directory structure of more than 1000 nested directories can interrupt a freewvs scan due to Python's recursion limit and os.walk. This can be problematic in a case where an administrator scans the dirs of potentially untrusted users. This has been patched in 0.1.1...

4CVSS6.6AI score0.00597EPSS
Exploits0References2Affected Software1
PyPA
PyPA
added 2020/06/25 7:15 p.m.6 views

PYSEC-2020-79

In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multiple out-of-bounds reads via a crafted JP2 file...

5.5CVSS6.9AI score0.0142EPSS
Exploits0References10Affected Software1
PyPA
PyPA
added 2020/06/25 7:15 p.m.6 views

PYSEC-2020-76

Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c...

5.5CVSS7.1AI score0.01468EPSS
Exploits0References10Affected Software1
PyPA
PyPA
added 2020/06/19 11:15 a.m.6 views

PYSEC-2020-250

Open-iSCSI rtslib-fb through 2.1.72 has weak permissions for /etc/target/saveconfig.json because shutil.copyfile instead of shutil.copy is used, and thus permissions are not preserved...

7.8CVSS7AI score0.00339EPSS
Exploits0References4Affected Software1
PyPA
PyPA
added 2020/06/15 3:15 p.m.6 views

PYSEC-2020-240

A Denial of Service DoS condition is possible in OpenStack Mistral in versions up to and including 7.0.3. Submitting a specially crafted workflow definition YAML file containing nested anchors can lead to resource exhaustion culminating in a denial of service...

6.5CVSS6.6AI score0.01176EPSS
Exploits0References3Affected Software1
PyPA
PyPA
added 2020/06/11 12:15 a.m.6 views

PYSEC-2020-47

In Indy Node 1.12.2, there is an Uncontrolled Resource Consumption vulnerability. Indy Node has a bug in TAA handling code. The current primary can be crashed with a malformed transaction from a client, which leads to a view change. Repeated rapid view changes have the potential of bringing down...

7.5CVSS6.7AI score0.01731EPSS
Exploits0References3Affected Software1
PyPA
PyPA
added 2020/06/01 7:15 p.m.6 views

PYSEC-2020-99

Python-RSA before 4.1 ignores leading '\0' bytes during decryption of ciphertext. This could conceivably have a security-relevant impact, e.g., by helping an attacker to infer that an application uses Python-RSA, or if the length of accepted ciphertext affects application behavior such as by...

7.5CVSS6.9AI score0.01359EPSS
Exploits1References6Affected Software1
PyPA
PyPA
added 2020/05/11 2:15 p.m.6 views

PYSEC-2020-1

A flaw was found in Ansible Engine affecting Ansible Engine versions 2.7.x before 2.7.17 and 2.8.x before 2.8.11 and 2.9.x before 2.9.7 as well as Ansible Tower before and including versions 3.4.5 and 3.5.5 and 3.6.3 when using modules which decrypts vault files such as assemble, script, unarchiv...

5.5CVSS6.6AI score0.00376EPSS
Exploits0References4Affected Software1
PyPA
PyPA
added 2020/05/07 12:15 a.m.6 views

PYSEC-2020-54

An issue was discovered in OpenStack Keystone before 15.0.1, and 16.0.0. The list of roles provided for an OAuth1 access token is silently ignored. Thus, when an access token is used to request a keystone token, the keystone token contains every role assignment the creator had for the project. Th...

8.8CVSS7.6AI score0.01896EPSS
Exploits0References7Affected Software1
PyPA
PyPA
added 2020/05/07 12:15 a.m.6 views

PYSEC-2020-55

An issue was discovered in OpenStack Keystone before 15.0.1, and 16.0.0. Any authenticated user can create an EC2 credential for themselves for a project that they have a specified role on, and then perform an update to the credential user and project, allowing them to masquerade as another user...

8.8CVSS7.5AI score0.04918EPSS
Exploits0References7Affected Software1
PyPA
PyPA
added 2020/04/14 11:15 p.m.6 views

PYSEC-2020-152

In Wagtail before versions 2.8.1 and 2.7.2, a cross-site scripting XSS vulnerability exists on the page revision comparison view within the Wagtail admin interface. A user with a limited-permission editor account for the Wagtail admin could potentially craft a page revision history that, when...

6.8CVSS5.8AI score0.01273EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2020/03/31 5:15 p.m.6 views

PYSEC-2020-206

A vulnerability was found in Ansible Engine versions 2.9.x before 2.9.3, 2.8.x before 2.8.8, 2.7.x before 2.7.16 and earlier, where in Ansible's nxosfilecopy module can be used to copy files to a flash or bootflash on NXOS devices. Malicious code could craft the filename parameter to perform OS...

7.3CVSS7.1AI score0.00736EPSS
Exploits0References7Affected Software1
PyPA
PyPA
added 2020/03/16 4:15 p.m.6 views

PYSEC-2020-8

A flaw was found in Ansible Engine when a file is moved using atomicmove primitive as the file mode cannot be specified. This sets the destination files world-readable if the destination file does not exist and if the file exists, the file could be changed to have less restrictive permissions...

3.3CVSS6.2AI score0.00401EPSS
Exploits1References6Affected Software1
PyPA
PyPA
added 2020/03/16 4:15 p.m.6 views

PYSEC-2020-12

A flaw was found in Ansible Engine when using Ansible Vault for editing encrypted files. When a user executes "ansible-vault edit", another user on the same computer can read the old and new secret, as it is created in a temporary file with mkstemp and the returned file descriptor is closed and t...

4.7CVSS6.4AI score0.00374EPSS
Exploits0References8Affected Software1
PyPA
PyPA
added 2020/03/14 6:15 p.m.6 views

PYSEC-2020-91

An issue was discovered in psd-tools before 1.9.4. The Cython implementation of RLE decoding did not check for malicious data...

9.8CVSS7AI score0.01736EPSS
Exploits0References3Affected Software1
PyPA
PyPA
added 2020/03/12 6:15 p.m.6 views

PYSEC-2020-11

A flaw was found in Ansible 2.7.16 and prior, 2.8.8 and prior, and 2.9.5 and prior when a password is set with the argument "password" of svn module, it is used on svn command line, disclosing to other users within the same node. An attacker could take advantage by reading the cmdline file from...

3.9CVSS6.8AI score0.00358EPSS
Exploits0References7Affected Software1
PyPA
PyPA
added 2020/03/09 4:15 p.m.6 views

PYSEC-2020-9

A flaw was found in Ansible 2.7.17 and prior, 2.8.9 and prior, and 2.9.6 and prior when using the Extract-Zip function from the winunzip module as the extracted files are not checked if they belong to the destination folder. An attacker could take advantage of this flaw by crafting an archive...

7.8CVSS6.4AI score0.00362EPSS
Exploits0References7Affected Software1
PyPA
PyPA
added 2020/02/20 3:15 p.m.6 views

PYSEC-2020-200

The vault subsystem in Ansible before 1.5.5 does not set the umask before creation or modification of a vault file, which allows local users to obtain sensitive key information by reading a file...

5.5CVSS6.2AI score0.00415EPSS
Exploits0References3Affected Software1
PyPA
PyPA
added 2020/02/19 4:15 a.m.6 views

PYSEC-2020-176

PyYAML 5.1 through 5.1.2 has insufficient restrictions on the load and loadall functions because of a class deserialization issue, e.g., Popen is a class in the subprocess module. NOTE: this issue exists because of an incomplete fix for CVE-2017-18342...

9.8CVSS8.4AI score0.06031EPSS
Exploits2References5Affected Software1
PyPA
PyPA
added 2020/02/05 4:15 p.m.6 views

PYSEC-2020-147

TUF aka The Update Framework through 0.12.1 has Improper Verification of a Cryptographic Signature...

9.8CVSS7AI score0.00979EPSS
Exploits0References2Affected Software1
PyPA
PyPA
added 2020/01/27 5:15 a.m.6 views

PYSEC-2020-344

In Jp2Image::readMetadata in jp2image.cpp in Exiv2 0.27.2, an input file can result in an infinite loop and hang, with high CPU consumption. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted file...

7.8CVSS6.6AI score0.04296EPSS
Exploits1References8Affected Software1
PyPA
PyPA
added 2020/01/24 8:15 p.m.6 views

PYSEC-2020-230

In Django User Sessions django-user-sessions before 1.7.1, the views provided allow users to terminate specific sessions. The session key is used to identify sessions, and thus included in the rendered HTML. In itself this is not a problem. However if the website has an XSS vulnerability, the...

8.8CVSS6.3AI score0.00439EPSS
Exploits0References2Affected Software1
PyPA
PyPA
added 2020/01/23 9:15 p.m.6 views

PYSEC-2020-88

SQL Injection in DTML or in connection objects in Plone 4.0 through 5.2.1 allows users to perform unwanted SQL queries. This is a problem in Zope...

8.8CVSS7.9AI score0.01213EPSS
Exploits0References5Affected Software1
PyPA
PyPA
added 2020/01/23 9:15 p.m.6 views

PYSEC-2020-90

A privilege escalation issue in plone.app.contenttypes in Plone 4.3 through 5.2.1 allows users to PUT overwrite some content without needing write permission...

9.8CVSS7.2AI score0.02258EPSS
Exploits0References4Affected Software1
PyPA
PyPA
added 2020/01/22 7:15 p.m.6 views

PYSEC-2020-178

Waitress through version 1.3.1 allows request smuggling by sending the Content-Length header twice. Waitress would header fold a double Content-Length header and due to being unable to cast the now comma separated value to an integer would set the Content-Length to 0 internally. If two...

7.5CVSS6.8AI score0.02122EPSS
Exploits0References4Affected Software1
PyPA
PyPA
added 2020/01/14 7:15 p.m.6 views

PYSEC-2020-146

TUF aka The Update Framework 0.7.2 through 0.12.1 allows Uncontrolled Resource Consumption...

5.3CVSS7AI score0.01403EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2020/01/14 5:15 p.m.6 views

PYSEC-2020-162

In Apache Airflow before 1.10.5 when running with the "classic" UI, a malicious admin user could edit the state of objects in the Airflow metadata database to execute arbitrary javascript on certain page views. The new "RBAC" UI is unaffected...

4.8CVSS7.3AI score0.01871EPSS
Exploits0References4Affected Software1
PyPA
PyPA
added 2020/01/13 7:15 p.m.6 views

PYSEC-2020-94

PySAML2 before 5.0.0 does not check that the signature in a SAML document is enveloped and thus signature wrapping is effective, i.e., it is affected by XML Signature Wrapping XSW. The signature information and the node/object that is signed can be in different places and thus the signature...

7.5CVSS6.8AI score0.01207EPSS
Exploits0References9Affected Software1
PyPA
PyPA
added 2020/01/03 1:15 a.m.6 views

PYSEC-2020-81

libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer overflow, related to realloc...

8.8CVSS6.9AI score0.01975EPSS
Exploits0References6Affected Software1
PyPA
PyPA
added 2020/01/03 1:15 a.m.6 views

PYSEC-2020-82

libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow...

9.8CVSS7.2AI score0.04212EPSS
Exploits0References9Affected Software1
PyPA
PyPA
added 2020/01/02 7:15 p.m.6 views

PYSEC-2020-218

Multiple cross-site scripting XSS vulnerabilities in Zope, as used in Plone 3.3.x through 3.3.6, 4.0.x through 4.0.9, 4.1.x through 4.1.6, 4.2.x through 4.2.7, and 4.3 through 4.3.2, allow remote attackers to inject arbitrary web script or HTML via unspecified input in the 1 browseridmanager or 2...

6.1CVSS6AI score0.01395EPSS
Exploits0References7Affected Software1
Total number of security vulnerabilities5000