Lucene search
Ubuntu.comUB:CVE-2023-41419HistorySep 25, 2023 - 12:00 a.m.
CVE-2023-41419
2023-09-2500:00:00
ubuntu.com
ubuntu.com
15
cve-2023-41419
gevent
vulnerability
privilege escalation
wsgiserver
unix
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.002 Low
EPSS
Percentile
55.2%
An issue in Gevent before version 23.9.0 allows a remote attacker to
escalate privileges via a crafted script to the WSGIServer component.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | python-gevent | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | python-gevent | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | python-gevent | < any | UNKNOWN |
| ubuntu | 23.10 | noarch | python-gevent | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | python-gevent | < any | UNKNOWN |
| ubuntu | 14.04 | noarch | python-gevent | < any | UNKNOWN |
| ubuntu | 16.04 | noarch | python-gevent | < any | UNKNOWN |
Related
osv
osv
PYSEC-2023-177
2023-09-25 12:15:00
Gevent allows remote attacker to escalate privileges
2023-09-25 12:30:44
CVE-2023-41419
2023-09-25 12:15:11
ibm
ibm
Security Bulletin: Gevent, used in IBM Maximo Application Suite - Monitor Component, is vulnerable to CVE-2023-41419 which allows remote attackers to escalate privileges.
2023-12-12 17:24:15
nvd
nvd
CVE-2023-41419
2023-09-25 12:15:11
veracode
veracode
HTTP Request/Response Smuggling
2023-09-27 10:19:40
cbl_mariner
cbl_mariner
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:4091-1)
2023-10-18 00:00:00
redhat
redhat
nessus
nessus
RHEL 9 : Red Hat OpenStack Platform 17.1.1 (python-gevent) (RHSA-2023:7438)
2024-04-28 00:00:00
RHEL 7 : python-gevent (Unpatched Vulnerability)
2024-06-03 00:00:00
SUSE SLED15 / SLES15 Security Update : python-gevent (SUSE-SU-2023:4091-1)
2023-10-18 00:00:00
redhatcve
redhatcve
CVE-2023-41419
2023-09-25 18:55:01
wolfi
wolfi
CVE-2023-41419 vulnerabilities
2024-06-25 03:08:26
cvelist
cvelist
CVE-2023-41419
2023-09-25 00:00:00
cgr
cgr
CVE-2023-41419 vulnerabilities
2024-05-19 03:07:16
cve
cve
CVE-2023-41419
2023-09-25 12:15:11
prion
prion
Design/Logic Flaw
2023-09-25 12:15:00
github
github
Gevent allows remote attacker to escalate privileges
2023-09-25 12:30:44
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.002 Low
EPSS
Percentile
55.2%
Related for UB:CVE-2023-41419