Lucene search
Ubuntu.comUB:CVE-2023-41419HistorySep 25, 2023 - 12:00 a.m.
CVE-2023-41419
2023-09-2500:00:00
ubuntu.com
ubuntu.com
14
cve-2023-41419
gevent
vulnerability
privilege escalation
wsgiserver
unix
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.002 Low
EPSS
Percentile
55.1%
An issue in Gevent before version 23.9.0 allows a remote attacker to
escalate privileges via a crafted script to the WSGIServer component.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | python-gevent | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | python-gevent | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | python-gevent | < any | UNKNOWN |
| ubuntu | 23.10 | noarch | python-gevent | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | python-gevent | < any | UNKNOWN |
| ubuntu | 14.04 | noarch | python-gevent | < any | UNKNOWN |
| ubuntu | 16.04 | noarch | python-gevent | < any | UNKNOWN |
Related
veracode
veracode
HTTP Request/Response Smuggling
2023-09-27 10:19:40
osv
osv
PYSEC-2023-177
2023-09-25 12:15:00
Gevent allows remote attacker to escalate privileges
2023-09-25 12:30:44
CVE-2023-41419
2023-09-25 12:15:11
ibm
ibm
Security Bulletin: Gevent, used in IBM Maximo Application Suite - Monitor Component, is vulnerable to CVE-2023-41419 which allows remote attackers to escalate privileges.
2023-12-12 17:24:15
nvd
nvd
CVE-2023-41419
2023-09-25 12:15:11
cbl_mariner
cbl_mariner
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:4091-1)
2023-10-18 00:00:00
prion
prion
Design/Logic Flaw
2023-09-25 12:15:00
github
github
Gevent allows remote attacker to escalate privileges
2023-09-25 12:30:44
cve
cve
CVE-2023-41419
2023-09-25 12:15:11
cgr
cgr
CVE-2023-41419 vulnerabilities
2024-05-19 03:07:16
nessus
nessus
SUSE SLED15 / SLES15 Security Update : python-gevent (SUSE-SU-2023:4091-1)
2023-10-18 00:00:00
RHEL 7 : python-gevent (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 9 : Red Hat OpenStack Platform 17.1.1 (python-gevent) (RHSA-2023:7438)
2024-04-28 00:00:00
cvelist
cvelist
CVE-2023-41419
2023-09-25 00:00:00
redhatcve
redhatcve
CVE-2023-41419
2023-09-25 18:55:01
redhat
redhat
wolfi
wolfi
CVE-2023-41419 vulnerabilities
2024-06-16 09:08:15
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.002 Low
EPSS
Percentile
55.1%
Related for UB:CVE-2023-41419