Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Python-gnupg ProjectPython-gnupg

3 matches found

CVE
CVEadded 2014/10/25 9:0 p.m.98 views

CVE-2014-1929

The CVE-2014-1929 entry concerns python-gnupg versions 0.3.5 and 0.3.6. It states an option-injection via positional arguments allows context-dependent attackers to achieve an unspecified impact, stemming from an incomplete fix for CVE-2013-7323. Connected documents corroborate related shell-quot...

4.4CVSS6.6AI score0.01162EPSS
CVE
CVEadded 2014/10/25 9:0 p.m.68 views

CVE-2014-1927

The CVE-2014-1927 entry concerns the shell_quote function in python-gnupg 0.3.5, which does not properly quote strings and can allow context-dependent attackers to execute arbitrary code via shell metacharacters. The documented vector examples reference using "$(" command-substitution sequences, ...

7.5CVSS7.3AI score0.01162EPSS
CVE
CVEadded 2014/10/25 9:0 p.m.67 views

CVE-2014-1928

The connected advisories confirm a shell_quote handling flaw in python-gnupg 0.3.5 (and related 0.3.6) where improper quoting enables context-dependent code execution via shell metacharacters. Root cause is an incomplete fix for CVE-2013-7323. Impact is arbitrary code execution through crafted in...

4.6CVSS7.3AI score0.01162EPSS