Описание
SQL injection vulnerability in geopandas before v.1.1.2 allows an attacker to obtain sensitive information via the to_postgis()` function being used to write GeoDataFrames to a PostgreSQL database.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1.1.2-1 |
| esm-apps/bionic | not-affected | code not present |
| esm-apps/focal | not-affected | code not present |
| esm-apps/jammy | released | 0.10.2-1ubuntu0.1 |
| esm-apps/noble | released | 0.14.3-2ubuntu0.1 |
| esm-apps/xenial | not-affected | code not present |
| jammy | released | 0.10.2-1ubuntu0.1 |
| noble | released | 0.14.3-2ubuntu0.1 |
| questing | released | 1.0.1-2ubuntu0.1 |
| upstream | released | 1.1.2-1 |
Показывать по
10
8.6 High
CVSS3
Связанные уязвимости
CVSS3: 8.6
nvd
2 месяца назад
SQL injection vulnerability in geopandas before v.1.1.2 allows an attacker to obtain sensitive information via the to_postgis()` function being used to write GeoDataFrames to a PostgreSQL database.
CVSS3: 8.6
debian
2 месяца назад
SQL injection vulnerability in geopandas before v.1.1.2 allows an atta ...
CVSS3: 8.6
github
2 месяца назад
geopandas SQL Injection Vulnerability in to_postgis() Allows Information Disclosure
8.6 High
CVSS3