Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:43798
HistoryOct 12, 2023 - 2:32 p.m.

Improper Input Validation

2023-10-1214:32:35
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
291
python
input validation
email address
vulnerability
domain name
software

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

EPSS

0.002

Percentile

58.7%

python is vulnerable to improper input validation. The vulnerability arises due to incorrect parsing of an email address containing a special character. An attacker can bypass protection mechanisms in which application access is granted only after verifying its domain name.

Affected configurations

Vulners
Node
-python3\Matchedge3.8.8-r0
OR
-python3\Matchedge3.9.5-r1
OR
-python3\Matchedge3.10.2-r0
OR
-python3\Matchedge3.11.1-r2
OR
-python3\Matchedge3.8.2-r1
OR
-python3\Matchedge3.11.1-r1
OR
-python3\Matchedge3.8.2-r7
OR
-python3\Matchedge3.10.5-r1
OR
-python3\Matchedge3.10.4-r0
OR
-python3\Matchedge3.12.3-r0
OR
-python3\Matchedge3.10.8-r0
OR
-python3\Matchedge3.11.5-r0
OR
-python3\Matchedge3.11.3-r0
OR
-python3\Matchedge3.10.5-r0
OR
-python3\Matchedge3.11.4-r0
OR
-python3\Matchedge3.12.5-r0
OR
-python3\Matchedge3.9.7-r4
OR
-python3\Matchedge3.10.6-r1
OR
-python3\Matchedge3.8.2-r0
OR
-python3\Matchedge3.11.3-r11
OR
-python3\Matchedge3.9.6-r2
OR
-python3\Matchedge3.10.8-r1
OR
-python3\Matchedge3.10.3-r1
OR
-python3\Matchedge3.10.8-r3
OR
-python3\Matchedge3.8.7-r3
OR
-python3\Matchedge3.11.1-r3
OR
-python3\Matchedge3.9.5-r0
OR
-python3\Matchedge3.10.7-r0
OR
-python3\Matchedge3.11.2-r0
OR
-python3\Matchedge3.8.3-r0
OR
-python3\Matchedge3.10.2-r1
OR
-python3\Matchedge3.8.2-r6
OR
-python3\Matchedge3.11.6-r1
OR
-python3\Matchedge3.9.6-r0
OR
-python3\Matchedge3.8.2-r2
OR
-python3\Matchedge3.11.3-r3
OR
-python3\Matchedge3.10.6-r0
OR
-python3\Matchedge3.12.4-r0
OR
-python3\Matchedge3.9.7-r2
OR
-python3\Matchedge3.11.3-r10
OR
-python3\Matchedge3.11.4-r2
OR
-python3\Matchedge3.12.5-r1
OR
-python3\Matchedge3.11.4-r1
OR
-python3\Matchedge3.9.4-r0
OR
-python3\Matchedge3.10.5-r2
OR
-python3\Matchedge3.10.1-r0
OR
-python3\Matchedge3.9.7-r3
OR
-python3\Matchedge3.11.0-r2
OR
-python3\Matchedge3.11.4-r4
OR
-python3\Matchedge3.12.3-r1
OR
-python3\Matchedge3.11.8-r0
OR
-python3\Match3.193.11.9-r1
OR
-python3\Match3.193.11.9-r0
OR
-python3\Match3.193.11.6-r1
OR
-python3\Match3.193.11.8-r0
OR
-python3\Match3.173.10.9-r1
OR
-python3\Match3.173.10.14-r2
OR
-python3\Match3.173.10.14-r1
OR
-python3\Match3.173.10.10-r0
OR
-python3\Match3.173.10.13-r0
OR
-python3\Match3.173.10.11-r0
OR
-python3\Match3.173.10.12-r0
OR
-python3\Match3.173.10.8-r3
OR
-python3\Match3.183.11.5-r0
OR
-python3\Match3.183.11.3-r11
OR
-python3\Match3.183.11.6-r0
OR
-python3\Match3.183.11.4-r0
OR
-python3\Match3.183.11.3-r10
OR
-python3\Match3.183.11.8-r1
OR
-python3\Match3.183.11.8-r0
OR
-python3\Match3.203.12.3-r2
OR
-python3\Match3.203.12.3-r1
OR
pythonpythonRange3.11.6
OR
-pythonx86Range3.12.0-a1
VendorProductVersionCPE
-python3\edgecpe:2.3:a:-:python3\:edge:3.8.8-r0:*:*:*:*:*:*:*
-python3\edgecpe:2.3:a:-:python3\:edge:3.9.5-r1:*:*:*:*:*:*:*
-python3\edgecpe:2.3:a:-:python3\:edge:3.10.2-r0:*:*:*:*:*:*:*
-python3\edgecpe:2.3:a:-:python3\:edge:3.11.1-r2:*:*:*:*:*:*:*
-python3\edgecpe:2.3:a:-:python3\:edge:3.8.2-r1:*:*:*:*:*:*:*
-python3\edgecpe:2.3:a:-:python3\:edge:3.11.1-r1:*:*:*:*:*:*:*
-python3\edgecpe:2.3:a:-:python3\:edge:3.8.2-r7:*:*:*:*:*:*:*
-python3\edgecpe:2.3:a:-:python3\:edge:3.10.5-r1:*:*:*:*:*:*:*
-python3\edgecpe:2.3:a:-:python3\:edge:3.10.4-r0:*:*:*:*:*:*:*
-python3\edgecpe:2.3:a:-:python3\:edge:3.12.3-r0:*:*:*:*:*:*:*
Rows per page:
1-10 of 741

References

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

EPSS

0.002

Percentile

58.7%