Lucene search
K

7035 matches found

PyPA
PyPA
•added 2020/02/12 2:15 a.m.•8 views

PYSEC-2020-217

Git before 1.8.5.6, 1.9.x before 1.9.5, 2.0.x before 2.0.5, 2.1.x before 2.1.4, and 2.2.x before 2.2.1 on Windows and OS X; Mercurial before 3.2.3 on Windows and OS X; Apple Xcode before 6.2 beta 3; mine all versions before 08-12-2014; libgit2 all versions up to 0.21.2; Egit all versions before...

9.8CVSS7.4AI score0.63178EPSS
Exploits5References10Affected Software1
PyPA
PyPA
•added 2020/02/05 4:15 p.m.•6 views

PYSEC-2020-147

TUF aka The Update Framework through 0.12.1 has Improper Verification of a Cryptographic Signature...

9.8CVSS7AI score0.00979EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2020/02/04 3:15 a.m.•10 views

PYSEC-2020-155

Waitress version 1.4.2 allows a DOS attack When waitress receives a header that contains invalid characters. When a header like "Bad-header: xxxxxxxxxxxxxxx\x10" is received, it will cause the regular expression engine to catastrophically backtrack causing the process to use 100% CPU time and...

6.8CVSS6.8AI score0.0262EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2020/02/03 12:15 p.m.•10 views

PYSEC-2020-35

Django 1.11 before 1.11.28, 2.2 before 2.2.10, and 3.0 before 3.0.3 allows SQL Injection if untrusted data is used as a StringAgg delimiter e.g., in Django applications that offer downloads of data as a series of rows with a user-specified column delimiter. By passing a suitably crafted delimiter...

9.8CVSS7.9AI score0.65336EPSS
Exploits9References13Affected Software1
PyPA
PyPA
•added 2020/01/30 9:15 p.m.•7 views

PYSEC-2020-212

Multiple cross-site scripting XSS vulnerabilities in Roundup before 1.4.20 allow remote attackers to inject arbitrary web script or HTML via the 1 @okmessage or 2 @errormessage parameter to issue...

6.1CVSS6AI score0.01546EPSS
Exploits1References6Affected Software1
PyPA
PyPA
•added 2020/01/29 3:15 p.m.•10 views

PYSEC-2020-156

flaskparser.py in Webargs 5.x through 5.5.2 doesn't check that the Content-Type header is application/json when receiving JSON input. If the request body is valid JSON, it will accept it even if the content type is application/x-www-form-urlencoded. This allows for JSON POST requests to be made...

8.8CVSS6.9AI score0.00488EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2020/01/28 11:15 p.m.•8 views

PYSEC-2020-231

Feedgen python feedgen before 0.9.0 is susceptible to XML Denial of Service attacks. The feedgen library allows supplying XML as content for some of the available fields. This XML will be parsed and integrated into the existing XML tree. During this process, feedgen is vulnerable to XML Denial of...

7.5CVSS7AI score0.01635EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2020/01/28 10:15 p.m.•5 views

PYSEC-2020-258

In TensorFlow before 1.15.2 and 2.0.1, converting a string from Python to a tf.float16 value results in a segmentation fault in eager mode as the format checks for this use case are only in the graph mode. This issue can lead to denial of service in inference/training where a malicious attacker c...

7.5CVSS6.8AI score0.00581EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2020/01/28 10:15 p.m.•5 views

PYSEC-2020-338

In TensorFlow before 1.15.2 and 2.0.1, converting a string from Python to a tf.float16 value results in a segmentation fault in eager mode as the format checks for this use case are only in the graph mode. This issue can lead to denial of service in inference/training where a malicious attacker c...

7.5CVSS6.8AI score0.00581EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2020/01/28 10:15 p.m.•6 views

PYSEC-2020-303

In TensorFlow before 1.15.2 and 2.0.1, converting a string from Python to a tf.float16 value results in a segmentation fault in eager mode as the format checks for this use case are only in the graph mode. This issue can lead to denial of service in inference/training where a malicious attacker c...

7.5CVSS6.8AI score0.00581EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2020/01/28 4:15 p.m.•7 views

PYSEC-2020-211

packet.py in pyrad before 2.1 uses weak random numbers to generate RADIUS authenticators and hash passwords, which makes it easier for remote attackers to obtain sensitive information via a brute force attack...

5.9CVSS6.5AI score0.02833EPSS
Exploits0References9Affected Software1
PyPA
PyPA
•added 2020/01/28 3:15 p.m.•8 views

PYSEC-2020-249

The py-bcrypt module before 0.3 for Python does not properly handle concurrent memory access, which allows attackers to bypass authentication via multiple authentication requests, which trigger the password hash to be overwritten...

7.5CVSS7.3AI score0.02835EPSS
Exploits1References6Affected Software1
PyPA
PyPA
•added 2020/01/28 1:15 a.m.•5 views

PYSEC-2020-224

An information disclosure issue was found in Apache Superset 0.34.0, 0.34.1, 0.35.0, and 0.35.1. Authenticated Apache Superset users are able to retrieve other users' information, including hashed passwords, by accessing an unused and undocumented API endpoint on Apache Superset...

6.5CVSS6.3AI score0.01351EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2020/01/27 5:15 a.m.•6 views

PYSEC-2020-344

In Jp2Image::readMetadata in jp2image.cpp in Exiv2 0.27.2, an input file can result in an infinite loop and hang, with high CPU consumption. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted file...

7.8CVSS6.6AI score0.04296EPSS
Exploits1References8Affected Software1
PyPA
PyPA
•added 2020/01/24 8:15 p.m.•8 views

PYSEC-2020-230

In Django User Sessions django-user-sessions before 1.7.1, the views provided allow users to terminate specific sessions. The session key is used to identify sessions, and thus included in the rendered HTML. In itself this is not a problem. However if the website has an XSS vulnerability, the...

8.8CVSS6.3AI score0.00439EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2020/01/24 6:15 p.m.•6 views

PYSEC-2020-213

Tornado before 3.2.2 sends arbitrary responses that contain a fixed CSRF token and may be sent with HTTP compression, which makes it easier for remote attackers to conduct a BREACH attack and determine this token via a series of crafted requests...

6.5CVSS7AI score0.02489EPSS
Exploits0References6Affected Software1
PyPA
PyPA
•added 2020/01/23 9:15 p.m.•8 views

PYSEC-2020-88

SQL Injection in DTML or in connection objects in Plone 4.0 through 5.2.1 allows users to perform unwanted SQL queries. This is a problem in Zope...

8.8CVSS7.9AI score0.01213EPSS
Exploits0References5Affected Software1
PyPA
PyPA
•added 2020/01/23 9:15 p.m.•7 views

PYSEC-2020-90

A privilege escalation issue in plone.app.contenttypes in Plone 4.3 through 5.2.1 allows users to PUT overwrite some content without needing write permission...

9.8CVSS7.2AI score0.02258EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2020/01/23 9:15 p.m.•9 views

PYSEC-2020-86

An XSS issue in the title field in Plone 5.0 through 5.2.1 allows users with a certain privilege level to insert JavaScript that will be executed when other users access the site...

5.4CVSS6.3AI score0.00802EPSS
Exploits0References5Affected Software1
PyPA
PyPA
•added 2020/01/23 9:15 p.m.•8 views

PYSEC-2020-87

plone.restapi in Plone 5.2.0 through 5.2.1 allows users with a certain privilege level to escalate their privileges up to the highest level...

8.8CVSS7.2AI score0.01458EPSS
Exploits0References5Affected Software1
PyPA
PyPA
•added 2020/01/23 9:15 p.m.•16 views

PYSEC-2020-89

Missing password strength checks on some forms in Plone 4.3 through 5.2.0 allow users to set weak passwords, leading to easier cracking...

7.5CVSS7AI score0.01253EPSS
Exploits0References5Affected Software1
PyPA
PyPA
•added 2020/01/23 9:15 p.m.•39 views

PYSEC-2020-85

An open redirect on the login form and possibly other places in Plone 4.0 through 5.2.1 allows an attacker to craft a link to a Plone Site that, when followed, and possibly after login, will redirect to an attacker's site...

6.1CVSS6.9AI score0.00923EPSS
Exploits0References5Affected Software1
PyPA
PyPA
•added 2020/01/22 7:15 p.m.•7 views

PYSEC-2020-178

Waitress through version 1.3.1 allows request smuggling by sending the Content-Length header twice. Waitress would header fold a double Content-Length header and due to being unable to cast the now comma separated value to an integer would set the Content-Length to 0 internally. If two...

7.5CVSS6.8AI score0.02122EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2020/01/22 2:15 a.m.•9 views

PYSEC-2020-174

In postfix-mta-sts-resolver before 0.5.1, All users can receive incorrect response from daemon under rare conditions, rendering downgrade of effective STS policy...

6.9CVSS6.9AI score0.00671EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2020/01/17 2:15 a.m.•5 views

PYSEC-2020-177

In SaltStack Salt through 2019.2.0, the salt-api NET API with the ssh client enabled is vulnerable to command injection. This allows an unauthenticated attacker with network access to the API endpoint to execute arbitrary code on the salt-api host...

9.8CVSS8.3AI score0.15106EPSS
Exploits0References6Affected Software1
PyPA
PyPA
•added 2020/01/15 9:15 p.m.•6 views

PYSEC-2020-235

python-markdown2 before 1.0.1.14 has multiple cross-site scripting XSS issues...

6.1CVSS6.2AI score0.00766EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2020/01/15 3:15 p.m.•6 views

PYSEC-2020-339

XML external entity XXE vulnerability in PyAMF before 0.8.0 allows remote attackers to cause a denial of service or read arbitrary files via a crafted Action Message Format AMF payload...

7.1CVSS7AI score0.01378EPSS
Exploits0References7Affected Software1
PyPA
PyPA
•added 2020/01/14 8:15 p.m.•11 views

PYSEC-2020-175

In PyInstaller before version 3.6, only on Windows, a local privilege escalation vulnerability is present in this particular case: If a software using PyInstaller in "onefile" mode is launched by a privileged user at least more than the current one which have his "TempPath" resolving to a world...

7.8CVSS6.9AI score0.00689EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2020/01/14 7:15 p.m.•7 views

PYSEC-2020-146

TUF aka The Update Framework 0.7.2 through 0.12.1 allows Uncontrolled Resource Consumption...

5.3CVSS7AI score0.01403EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2020/01/14 5:15 p.m.•6 views

PYSEC-2020-162

In Apache Airflow before 1.10.5 when running with the "classic" UI, a malicious admin user could edit the state of objects in the Airflow metadata database to execute arbitrary javascript on certain page views. The new "RBAC" UI is unaffected...

4.8CVSS7.3AI score0.01871EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2020/01/13 7:15 p.m.•6 views

PYSEC-2020-94

PySAML2 before 5.0.0 does not check that the signature in a SAML document is enveloped and thus signature wrapping is effective, i.e., it is affected by XML Signature Wrapping XSW. The signature information and the node/object that is signed can be in different places and thus the signature...

7.5CVSS6.8AI score0.01207EPSS
Exploits0References9Affected Software1
PyPA
PyPA
•added 2020/01/09 1:15 p.m.•7 views

PYSEC-2020-198

Ansible prior to 1.5.4 mishandles the evaluation of some strings...

7.5CVSS6.9AI score0.0118EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2020/01/05 10:15 p.m.•6 views

PYSEC-2020-172

There is a DoS vulnerability in Pillow before 6.2.2 caused by FpxImagePlugin.py calling the range function on an unvalidated 32-bit integer if the number of bands is large. On Windows running 32-bit Python, this results in an OverflowError or MemoryError due to the 2 GB limit. However, on Linux...

7.5CVSS6.9AI score0.02118EPSS
Exploits0References5Affected Software1
PyPA
PyPA
•added 2020/01/03 1:15 a.m.•6 views

PYSEC-2020-82

libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow...

9.8CVSS7.2AI score0.04212EPSS
Exploits0References9Affected Software1
PyPA
PyPA
•added 2020/01/03 1:15 a.m.•7 views

PYSEC-2020-81

libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer overflow, related to realloc...

8.8CVSS6.9AI score0.01975EPSS
Exploits0References6Affected Software1
PyPA
PyPA
•added 2020/01/03 1:15 a.m.•8 views

PYSEC-2020-83

libImaging/PcxDecode.c in Pillow before 6.2.2 has a PCX P mode buffer overflow...

9.8CVSS7.2AI score0.0369EPSS
Exploits0References13Affected Software1
PyPA
PyPA
•added 2020/01/03 1:15 a.m.•5 views

PYSEC-2020-84

libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow...

7.1CVSS7.2AI score0.02752EPSS
Exploits0References7Affected Software1
PyPA
PyPA
•added 2020/01/02 7:15 p.m.•8 views

PYSEC-2020-218

Multiple cross-site scripting XSS vulnerabilities in Zope, as used in Plone 3.3.x through 3.3.6, 4.0.x through 4.0.9, 4.1.x through 4.1.6, 4.2.x through 4.2.7, and 4.3 through 4.3.2, allow remote attackers to inject arbitrary web script or HTML via unspecified input in the 1 browseridmanager or 2...

6.1CVSS6AI score0.01395EPSS
Exploits0References7Affected Software1
PyPA
PyPA
•added 2020/01/02 6:15 p.m.•9 views

PYSEC-2020-245

ovirt-engine-sdk-python before 3.4.0.7 and 3.5.0.4 does not verify that the hostname of the remote endpoint matches the Common Name CN or subjectAltName as specified by its x.509 certificate in a TLS/SSL session. This could allow man-in-the-middle attackers to spoof remote endpoints via an...

5.9CVSS6.9AI score0.00413EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2020/01/02 3:15 p.m.•8 views

PYSEC-2020-160

Ansible, versions 2.9.x before 2.9.1, 2.8.x before 2.8.7 and Ansible versions 2.7.x before 2.7.15, is not respecting the flag nolog set it to True when Sumologic and Splunk callback plugins are used send tasks results events to collectors. This would discloses and collects any sensitive data...

6.5CVSS6.8AI score0.01857EPSS
Exploits1References6Affected Software1
PyPA
PyPA
•added 2020/01/02 3:15 p.m.•10 views

PYSEC-2020-163

A flaw was found in all python-ecdsa versions before 0.13.3, where it did not correctly verify whether signatures used DER encoding. Without this verification, a malformed signature could be accepted, making the signature malleable. Without proper verification, an attacker could use a malleable...

9.1CVSS6.5AI score0.01596EPSS
Exploits1References5Affected Software1
PyPA
PyPA
•added 2019/12/26 11:15 p.m.•7 views

PYSEC-2019-112

In Archery before 1.3, inserting an XSS payload into a project name either by creating a new project or editing an existing one will result in stored XSS on the vulnerability-scan scheduling page...

5.4CVSS6.2AI score0.00761EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2019/12/26 5:15 p.m.•11 views

PYSEC-2019-138

In Waitress through version 1.4.0, if a proxy server is used in front of waitress, an invalid request may be sent by an attacker that bypasses the front-end and is parsed differently by waitress leading to a potential for HTTP request smuggling. Specially crafted requests containing special...

8.2CVSS6.5AI score0.02587EPSS
Exploits0References7Affected Software1
PyPA
PyPA
•added 2019/12/20 11:15 p.m.•5 views

PYSEC-2019-137

Waitress through version 1.3.1 would parse the Transfer-Encoding header and only look for a single string value, if that value was not chunked it would fall through and use the Content-Length header instead. According to the HTTP standard Transfer-Encoding should be a comma separated list, with t...

7.5CVSS6.7AI score0.02545EPSS
Exploits0References6Affected Software1
PyPA
PyPA
•added 2019/12/20 11:15 p.m.•8 views

PYSEC-2019-136

Waitress through version 1.3.1 implemented a "MAY" part of the RFC7230 which states: "Although the line terminator for the start-line and header fields is the sequence CRLF, a recipient MAY recognize a single LF as a line terminator and ignore any preceding CR." Unfortunately if a front-end serve...

7.5CVSS6.8AI score0.02714EPSS
Exploits1References6Affected Software1
PyPA
PyPA
•added 2019/12/18 7:15 p.m.•8 views

PYSEC-2019-16

Django before 1.11.27, 2.x before 2.2.9, and 3.x before 3.0.1 allows account takeover. A suitably crafted email address that is equal to an existing user's email address after case transformation of Unicode characters would allow an attacker to be sent a password reset token for the matched user...

9.8CVSS7AI score0.3481EPSS
Exploits7References11Affected Software1
PyPA
PyPA
•added 2019/12/18 6:15 p.m.•7 views

PYSEC-2019-254

In Tautulli 2.1.9, CSRF in the /shutdown URI allows an attacker to shut down the remote media server. Also, anonymous access can be achieved in applications that do not have a user login area...

6.5CVSS7AI score0.14706EPSS
Exploits9References7Affected Software1
PyPA
PyPA
•added 2019/12/16 10:15 p.m.•5 views

PYSEC-2019-172

In Apache Incubator Superset before 0.31 user could query database metadata information from a database he has no access to, by using a specially crafted complex query...

5.3CVSS6.7AI score0.02779EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2019/12/16 10:15 p.m.•6 views

PYSEC-2019-173

In Apache Incubator Superset before 0.32, a user can view database names that he has no access to on a dropdown list in SQLLab...

5.3CVSS6.9AI score0.02707EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2019/12/16 9:15 p.m.•7 views

PYSEC-2019-227

In TensorFlow before 1.15, a heap buffer overflow in UnsortedSegmentSum can be produced when the Index template argument is int32. In this case datasize and numsegments fields are truncated from int64 to int32 and can produce negative numbers, resulting in accessing out of bounds heap memory. Thi...

9.8CVSS7.4AI score0.00777EPSS
Exploits0References3Affected Software1
Total number of security vulnerabilities7035