exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 38

BDU:2025-08604

8 месяцев назад

Уязвимость библиотеки упрощения упаковки проектов setuptools, связанная с неверным ограничением имени пути к каталогу с ограниченным доступом, позволяющая нарушителю скомпрометировать уязвимую систему

CVSS3: 8.8

EPSS: Низкий

ROS-20250630-08

7 месяцев назад

Уязвимость python3-setuptools

CVSS3: 8.8

EPSS: Низкий

CVE-2025-47273

8 месяцев назад

setuptools is a package that allows users to download, build, install, upgrade, and uninstall Python packages. A path traversal vulnerability in `PackageIndex` is present in setuptools prior to version 78.1.1. An attacker would be allowed to write files to arbitrary locations on the filesystem with the permissions of the process running the Python code, which could escalate to remote code execution depending on the context. Version 78.1.1 fixes the issue.

CVSS3: 8.8

EPSS: Низкий

CVE-2025-47273

8 месяцев назад

CVSS3: 7.1

EPSS: Низкий

CVE-2025-47273

8 месяцев назад

CVSS3: 8.8

EPSS: Низкий

CVE-2025-47273

7 месяцев назад

setuptools has a path traversal vulnerability in PackageIndex.download that leads to Arbitrary File Write

CVSS3: 8.8

EPSS: Низкий

CVE-2025-47273

8 месяцев назад

setuptools is a package that allows users to download, build, install, ...

CVSS3: 8.8

EPSS: Низкий

SUSE-SU-2025:01810-1

8 месяцев назад

Security update for python3-setuptools

EPSS: Низкий

SUSE-SU-2025:01774-1

8 месяцев назад

Security update for python312-setuptools

EPSS: Низкий

SUSE-SU-2025:01744-1

8 месяцев назад

Security update for python313-setuptools

EPSS: Низкий

SUSE-SU-2025:01723-1

8 месяцев назад

Security update for python39-setuptools

EPSS: Низкий

SUSE-SU-2025:01715-1

8 месяцев назад

Security update for python-setuptools

EPSS: Низкий

SUSE-SU-2025:01709-1

8 месяцев назад

Security update for python310-setuptools

EPSS: Низкий

SUSE-SU-2025:01704-2

7 месяцев назад

Security update for python-setuptools

EPSS: Низкий

SUSE-SU-2025:01704-1

8 месяцев назад

Security update for python-setuptools

EPSS: Низкий

SUSE-SU-2025:01695-1

8 месяцев назад

Security update for python-setuptools

EPSS: Низкий

SUSE-SU-2025:01693-1

8 месяцев назад

Security update for python36-setuptools

EPSS: Низкий

RLSA-2025:9940

3 месяца назад

Moderate: python-setuptools security update

EPSS: Низкий

RLSA-2025:13578

3 месяца назад

Moderate: python3.11-setuptools security update

EPSS: Низкий

RLSA-2025:12834

3 месяца назад

Moderate: python3.12-setuptools security update

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
BDU:2025-08604 Уязвимость библиотеки упрощения упаковки проектов setuptools, связанная с неверным ограничением имени пути к каталогу с ограниченным доступом, позволяющая нарушителю скомпрометировать уязвимую систему	CVSS3: 8.8	0% Низкий	8 месяцев назад
ROS-20250630-08 Уязвимость python3-setuptools	CVSS3: 8.8	0% Низкий	7 месяцев назад
CVE-2025-47273 setuptools is a package that allows users to download, build, install, upgrade, and uninstall Python packages. A path traversal vulnerability in `PackageIndex` is present in setuptools prior to version 78.1.1. An attacker would be allowed to write files to arbitrary locations on the filesystem with the permissions of the process running the Python code, which could escalate to remote code execution depending on the context. Version 78.1.1 fixes the issue.	CVSS3: 8.8	0% Низкий	8 месяцев назад
CVE-2025-47273 setuptools is a package that allows users to download, build, install, upgrade, and uninstall Python packages. A path traversal vulnerability in `PackageIndex` is present in setuptools prior to version 78.1.1. An attacker would be allowed to write files to arbitrary locations on the filesystem with the permissions of the process running the Python code, which could escalate to remote code execution depending on the context. Version 78.1.1 fixes the issue.	CVSS3: 7.1	0% Низкий	8 месяцев назад
CVE-2025-47273 setuptools is a package that allows users to download, build, install, upgrade, and uninstall Python packages. A path traversal vulnerability in `PackageIndex` is present in setuptools prior to version 78.1.1. An attacker would be allowed to write files to arbitrary locations on the filesystem with the permissions of the process running the Python code, which could escalate to remote code execution depending on the context. Version 78.1.1 fixes the issue.	CVSS3: 8.8	0% Низкий	8 месяцев назад
CVE-2025-47273 setuptools has a path traversal vulnerability in PackageIndex.download that leads to Arbitrary File Write	CVSS3: 8.8	0% Низкий	7 месяцев назад
CVE-2025-47273 setuptools is a package that allows users to download, build, install, ...	CVSS3: 8.8	0% Низкий	8 месяцев назад
SUSE-SU-2025:01810-1 Security update for python3-setuptools		0% Низкий	8 месяцев назад
SUSE-SU-2025:01774-1 Security update for python312-setuptools		0% Низкий	8 месяцев назад
SUSE-SU-2025:01744-1 Security update for python313-setuptools		0% Низкий	8 месяцев назад
SUSE-SU-2025:01723-1 Security update for python39-setuptools		0% Низкий	8 месяцев назад
SUSE-SU-2025:01715-1 Security update for python-setuptools		0% Низкий	8 месяцев назад
SUSE-SU-2025:01709-1 Security update for python310-setuptools		0% Низкий	8 месяцев назад
SUSE-SU-2025:01704-2 Security update for python-setuptools		0% Низкий	7 месяцев назад
SUSE-SU-2025:01704-1 Security update for python-setuptools		0% Низкий	8 месяцев назад
SUSE-SU-2025:01695-1 Security update for python-setuptools		0% Низкий	8 месяцев назад
SUSE-SU-2025:01693-1 Security update for python36-setuptools		0% Низкий	8 месяцев назад
RLSA-2025:9940 Moderate: python-setuptools security update		0% Низкий	3 месяца назад
RLSA-2025:13578 Moderate: python3.11-setuptools security update		0% Низкий	3 месяца назад
RLSA-2025:12834 Moderate: python3.12-setuptools security update		0% Низкий	3 месяца назад

Уязвимостей на страницу