Количество 28
Количество 28
CVE-2015-20107
In Python (aka CPython) up to 3.10.8, the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow attackers to inject shell commands into applications that call mailcap.findmatch with untrusted input (if they lack validation of user-provided filenames or arguments). The fix is also back-ported to 3.7, 3.8, 3.9
CVE-2015-20107
In Python (aka CPython) up to 3.10.8, the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow attackers to inject shell commands into applications that call mailcap.findmatch with untrusted input (if they lack validation of user-provided filenames or arguments). The fix is also back-ported to 3.7, 3.8, 3.9
CVE-2015-20107
In Python (aka CPython) up to 3.10.8, the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow attackers to inject shell commands into applications that call mailcap.findmatch with untrusted input (if they lack validation of user-provided filenames or arguments). The fix is also back-ported to 3.7, 3.8, 3.9
CVE-2015-20107
In Python (aka CPython) up to 3.10.8 the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow attackers to inject shell commands into applications that call mailcap.findmatch with untrusted input (if they lack validation of user-provided filenames or arguments). The fix is also back-ported to 3.7 3.8 3.9
CVE-2015-20107
In Python (aka CPython) up to 3.10.8, the mailcap module does not add ...
SUSE-SU-2022:2357-1
Security update for python3
SUSE-SU-2022:2344-1
Security update for python
SUSE-SU-2022:2291-1
Security update for python310
SUSE-SU-2022:2249-1
Security update for python
SUSE-SU-2022:2248-1
Security update for python
SUSE-SU-2022:2174-1
Security update for python39
SUSE-SU-2022:2166-1
Security update for python3
SUSE-SU-2022:2147-1
Security update for python36
RLSA-2022:7593
Moderate: python27:2.7 security update
RLSA-2022:7592
Moderate: python39:3.9 and python39-devel:3.9 security update
RLSA-2022:7581
Moderate: python38:3.8 and python38-devel:3.8 security update
GHSA-wvcr-2gc8-63gg
In Python (aka CPython) through 3.10.4, the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow attackers to inject shell commands into applications that call mailcap.findmatch with untrusted input (if they lack validation of user-provided filenames or arguments).
ELSA-2022-7593
ELSA-2022-7593: python27:2.7 security update (MODERATE)
ELSA-2022-7592
ELSA-2022-7592: python39:3.9 and python39-devel:3.9 security update (MODERATE)
ELSA-2022-7581
ELSA-2022-7581: python38:3.8 and python38-devel:3.8 security update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2015-20107 In Python (aka CPython) up to 3.10.8, the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow attackers to inject shell commands into applications that call mailcap.findmatch with untrusted input (if they lack validation of user-provided filenames or arguments). The fix is also back-ported to 3.7, 3.8, 3.9 | CVSS3: 7.6 | 1% Низкий | больше 3 лет назад |
 | CVE-2015-20107 In Python (aka CPython) up to 3.10.8, the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow attackers to inject shell commands into applications that call mailcap.findmatch with untrusted input (if they lack validation of user-provided filenames or arguments). The fix is also back-ported to 3.7, 3.8, 3.9 | CVSS3: 7.6 | 1% Низкий | больше 10 лет назад |
 | CVE-2015-20107 In Python (aka CPython) up to 3.10.8, the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow attackers to inject shell commands into applications that call mailcap.findmatch with untrusted input (if they lack validation of user-provided filenames or arguments). The fix is also back-ported to 3.7, 3.8, 3.9 | CVSS3: 7.6 | 1% Низкий | больше 3 лет назад |
 | CVE-2015-20107 In Python (aka CPython) up to 3.10.8 the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow attackers to inject shell commands into applications that call mailcap.findmatch with untrusted input (if they lack validation of user-provided filenames or arguments). The fix is also back-ported to 3.7 3.8 3.9 | CVSS3: 7.6 | 1% Низкий | больше 3 лет назад |
| CVE-2015-20107 In Python (aka CPython) up to 3.10.8, the mailcap module does not add ... | CVSS3: 7.6 | 1% Низкий | больше 3 лет назад |
 | SUSE-SU-2022:2357-1 Security update for python3 | 1% Низкий | больше 3 лет назад | |
| SUSE-SU-2022:2344-1 Security update for python | 1% Низкий | больше 3 лет назад | |
| SUSE-SU-2022:2291-1 Security update for python310 | 1% Низкий | больше 3 лет назад | |
| SUSE-SU-2022:2249-1 Security update for python | 1% Низкий | больше 3 лет назад | |
| SUSE-SU-2022:2248-1 Security update for python | 1% Низкий | больше 3 лет назад | |
| SUSE-SU-2022:2174-1 Security update for python39 | 1% Низкий | больше 3 лет назад | |
| SUSE-SU-2022:2166-1 Security update for python3 | 1% Низкий | больше 3 лет назад | |
| SUSE-SU-2022:2147-1 Security update for python36 | 1% Низкий | больше 3 лет назад | |
 | RLSA-2022:7593 Moderate: python27:2.7 security update | 1% Низкий | почти 3 года назад | |
| RLSA-2022:7592 Moderate: python39:3.9 and python39-devel:3.9 security update | 1% Низкий | почти 3 года назад | |
| RLSA-2022:7581 Moderate: python38:3.8 and python38-devel:3.8 security update | 1% Низкий | почти 3 года назад | |
| GHSA-wvcr-2gc8-63gg In Python (aka CPython) through 3.10.4, the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow attackers to inject shell commands into applications that call mailcap.findmatch with untrusted input (if they lack validation of user-provided filenames or arguments). | CVSS3: 9.8 | 1% Низкий | больше 3 лет назад |
| ELSA-2022-7593 ELSA-2022-7593: python27:2.7 security update (MODERATE) | почти 3 года назад | ||
| ELSA-2022-7592 ELSA-2022-7592: python39:3.9 and python39-devel:3.9 security update (MODERATE) | почти 3 года назад | ||
| ELSA-2022-7581 ELSA-2022-7581: python38:3.8 and python38-devel:3.8 security update (MODERATE) | почти 3 года назад |
Уязвимостей на страницу