Lucene search

Authorization Bypass

🗓️ 15 Jul 2019 00:30:07Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 28 Views

Python authorization bypass vulnerability with local_file schem

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 172
Cvelist	CVE-2019-9948	23 Mar 201917:07	–	cvelist
Tenable Nessus	Amazon Linux 2 : python (ALAS-2019-1291)	20 Sep 201900:00	–	nessus
Tenable Nessus	Photon OS 2.0: Python2 PHSA-2019-2.0-0146	22 Jul 202400:00	–	nessus
Tenable Nessus	F5 Networks BIG-IP : Python vulnerability (K28622040)	1 Feb 202200:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.5.3 : python (EulerOS-SA-2019-1359)	10 May 201900:00	–	nessus
Tenable Nessus	Photon OS 3.0: Python2 PHSA-2019-3.0-0009	2 Jul 201900:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP8 : python3 (EulerOS-SA-2019-2091)	30 Sep 201900:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2019-9948	4 Mar 202500:00	–	nessus
Tenable Nessus	Debian DLA-1852-1 : python3.4 security update	15 Jul 201900:00	–	nessus
Tenable Nessus	openSUSE Security Update : python (openSUSE-2019-1273)	26 Apr 201900:00	–	nessus

Vulners

Node

python2-tkinter python2-tkinterMatch2.7.16-r0os

AND

alpinelinux alpine_linuxMatch3.10

python3.5 python3.5Match3.5.3-1+deb9u1debian

AND

debian debian_linuxMatch9

python2.7 python2.7Match2.7.13-2+deb9u3debian

AND

debian debian_linuxMatch9

python2.7 python2.7Match2.7.16-2+deb10u1debian

AND

debian debian_linuxMatch10

python27-python python27-pythonMatch2.7.8_16.el6

python27-python python27-pythonMatch2.7.16_4.el7

python27-python python27-pythonMatch2.7.13_3.el7

python27-python python27-pythonMatch2.7.13_3.el6

python27-python python27-pythonMatch2.7.16_4.el6

python27-python python27-pythonMatch2.7.8_18.el6

python27-python python27-pythonMatch2.7.8_3.el6

python27-python python27-pythonMatch2.7.13_5.el7

python27-python python27-pythonMatch2.7.5_10.el6

python27-python python27-pythonMatch2.7.5_7.el6

python27-python python27-pythonMatch2.7.13_4.el6

python pythonMatch2.7.5_77.el7_6

python pythonMatch2.7.5_69.el7_5

python pythonMatch2.7.5_76.el7

python pythonMatch2.7.5_80.el7_6

python pythonMatch2.7.5_18.ael7b_1.1

rh-python36-python rh-python36-pythonMatch3.6.3_3.el6

rh-python36-python rh-python36-pythonMatch3.6.2_3.el7

rh-python36-python rh-python36-pythonMatch3.6.3_4.el6

rh-python36-python rh-python36-pythonMatch3.6.3_1.el6

rh-python36-python rh-python36-pythonMatch3.6.3_1.el7

rh-python36-python rh-python36-pythonMatch3.6.3_7.el7

rh-python36-python rh-python36-pythonMatch3.6.3_3.el7

Source	Link
securityfocus	www.securityfocus.com/bid/107549
seclists	www.seclists.org/bugtraq/2019/Oct/29
lists	www.lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab6a444e64e840a0%40%3Cissues.bookkeeper.apache.org%3E
lists	www.lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab6a444e64e840a0@%3Cissues.bookkeeper.apache.org%3E
lists	www.lists.debian.org/debian-lts-announce/2019/06/msg00022.html
lists	www.lists.debian.org/debian-lts-announce/2019/07/msg00011.html
lists	www.lists.debian.org/debian-lts-announce/2020/07/msg00011.html
lists	www.lists.debian.org/debian-lts-announce/2020/08/msg00034.html
bugs	www.bugs.python.org/issue36742
access	www.access.redhat.com/errata/RHSA-2019:1700

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

15 Jul 2019 00:07Current

9High risk

Vulners AI Score9

CVSS26.4

CVSS39.1

EPSS0.00441