Python — высокоуровневый язык программирования общего назначения. Его философия дизайна делает акцент на читаемости кода.

Релизный цикл, информация об уязвимостях

Продукт: Python

Вендор: python

График релизов

Недавние уязвимости Python

Количество 906

CVE-2005-0089

около 21 года назад

The SimpleXMLRPCServer library module in Python 2.2, 2.3 before 2.3.5, and 2.4, when used by XML-RPC servers that use the register_instance method to register an object without a _dispatch method, allows remote attackers to read or modify globals of the associated module, and possibly execute arbitrary code, via dotted attributes.

EPSS: Низкий

CVE-2004-0150

почти 22 года назад

Buffer overflow in the getaddrinfo function in Python 2.2 before 2.2.2, when IPv6 support is disabled, allows remote attackers to execute arbitrary code via an IPv6 address that is obtained using DNS.

CVSS2: 7.5

EPSS: Низкий

CVE-2004-0150

почти 22 года назад

Buffer overflow in the getaddrinfo function in Python 2.2 before 2.2.2 ...

CVSS2: 7.5

EPSS: Низкий

CVE-2002-1119

больше 23 лет назад

os._execvpe from os.py in Python 2.2.1 and earlier creates temporary files with predictable names, which could allow local users to execute arbitrary code via a symlink attack.

CVSS2: 4.6

EPSS: Низкий

CVE-2002-1119

больше 23 лет назад

os._execvpe from os.py in Python 2.2.1 and earlier creates temporary f ...

CVSS2: 4.6

EPSS: Низкий

CVE-2002-1119

больше 23 лет назад

os._execvpe from os.py in Python 2.2.1 and earlier creates temporary files with predictable names, which could allow local users to execute arbitrary code via a symlink attack.

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2005-0089 The SimpleXMLRPCServer library module in Python 2.2, 2.3 before 2.3.5, and 2.4, when used by XML-RPC servers that use the register_instance method to register an object without a _dispatch method, allows remote attackers to read or modify globals of the associated module, and possibly execute arbitrary code, via dotted attributes.		9% Низкий	около 21 года назад
CVE-2004-0150 Buffer overflow in the getaddrinfo function in Python 2.2 before 2.2.2, when IPv6 support is disabled, allows remote attackers to execute arbitrary code via an IPv6 address that is obtained using DNS.	CVSS2: 7.5	8% Низкий	почти 22 года назад
CVE-2004-0150 Buffer overflow in the getaddrinfo function in Python 2.2 before 2.2.2 ...	CVSS2: 7.5	8% Низкий	почти 22 года назад
CVE-2002-1119 os._execvpe from os.py in Python 2.2.1 and earlier creates temporary files with predictable names, which could allow local users to execute arbitrary code via a symlink attack.	CVSS2: 4.6	0% Низкий	больше 23 лет назад
CVE-2002-1119 os._execvpe from os.py in Python 2.2.1 and earlier creates temporary f ...	CVSS2: 4.6	0% Низкий	больше 23 лет назад
CVE-2002-1119 os._execvpe from os.py in Python 2.2.1 and earlier creates temporary files with predictable names, which could allow local users to execute arbitrary code via a symlink attack.		0% Низкий	больше 23 лет назад

Уязвимостей на страницу