Lucene search
MitreVULNRICHMENT:CVE-2024-36039HistoryMay 21, 2024 - 12:00 a.m.
CVE-2024-36039
2024-05-2100:00:00
mitre
github.com
1
pymysql
sql injection
json input
escape_dict
cve-2024-36039
PyMySQL through 1.1.0 allows SQL injection if used with untrusted JSON input because keys are not escaped by escape_dict.
References
github.com/PyMySQL/PyMySQL/releases/tag/v1.1.1
lists.debian.org/debian-lts-announce/2024/05/msg00017.html
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/23VXBV34GFRICCVYZ6KFMSSWY5UEXCF5/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/35VOJS3SRJNLQIO7YTZFNM6RWHIHWTMK/
Related
redhatcve
redhatcve
CVE-2024-36039
2024-05-23 19:21:13
openvas
openvas
openSUSE: Security Advisory for python (SUSE-SU-2024:1925-1)
2024-06-12 00:00:00
Fedora: Security Advisory for python-PyMySQL (FEDORA-2024-b26f07d27b)
2024-06-25 00:00:00
Debian: Security Advisory (DLA-3822-1)
2024-05-28 00:00:00
nessus
nessus
Fedora 39 : python-PyMySQL (2024-e7141ab284)
2024-06-23 00:00:00
Debian dla-3822 : python-pymysql - security update
2024-05-29 00:00:00
openSUSE 15 Security Update : python-PyMySQL (SUSE-SU-2024:1925-1)
2024-06-06 00:00:00
debian
debian
[SECURITY] [DLA 3822-1] python-pymysql security update
2024-05-27 10:36:52
[SECURITY] [DSA 5700-1] python-pymysql security update
2024-05-29 17:35:02
nvd
nvd
CVE-2024-36039
2024-05-21 16:15:26
debiancve
debiancve
CVE-2024-36039
2024-05-21 16:15:26
ubuntucve
ubuntucve
CVE-2024-36039
2024-05-21 00:00:00
osv
osv
python-pymysql - security update
2024-05-27 00:00:00
python-pymysql - security update
2024-05-29 00:00:00
python-pymysql vulnerability
2024-05-30 11:38:31
github
github
PyMySQL SQL Injection vulnerability
2024-05-21 18:31:23
fedora
fedora
[SECURITY] Fedora 39 Update: python-PyMySQL-1.1.1-1.fc39
2024-06-24 01:39:16
[SECURITY] Fedora 40 Update: python-PyMySQL-1.1.1-1.fc40
2024-06-24 06:37:30
redos
redos
ROS-20240611-04
2024-06-11 00:00:00
cvelist
cvelist
CVE-2024-36039
2024-05-21 00:00:00
wolfi
wolfi
CVE-2024-36039 vulnerabilities
2024-06-28 15:21:31
veracode
veracode
SQL Injection
2024-05-24 08:27:02
ubuntu
ubuntu
PyMySQL vulnerability
2024-05-30 00:00:00
cve
cve
CVE-2024-36039
2024-05-21 16:15:26
7.8 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
15.7%
Related for VULNRICHMENT:CVE-2024-36039