Количество 17
Количество 17
GHSA-grfr-pqc4-fqmw
Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in shutil module (make_archive function) that can result in Denial of service, Information gain via injection of arbitrary files on the system or entire drive. This attack appear to be exploitable via Passage of unfiltered user input to the function. This vulnerability appears to have been fixed in after commit add531a1e55b0a739b0f42582f1c9747e5649ace.
CVE-2018-1000802
Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in shutil module (make_archive function) that can result in Denial of service, Information gain via injection of arbitrary files on the system or entire drive. This attack appear to be exploitable via Passage of unfiltered user input to the function. This vulnerability appears to have been fixed in after commit add531a1e55b0a739b0f42582f1c9747e5649ace.
CVE-2018-1000802
Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in shutil module (make_archive function) that can result in Denial of service, Information gain via injection of arbitrary files on the system or entire drive. This attack appear to be exploitable via Passage of unfiltered user input to the function. This vulnerability appears to have been fixed in after commit add531a1e55b0a739b0f42582f1c9747e5649ace.
CVE-2018-1000802
Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in shutil module (make_archive function) that can result in Denial of service, Information gain via injection of arbitrary files on the system or entire drive. This attack appear to be exploitable via Passage of unfiltered user input to the function. This vulnerability appears to have been fixed in after commit add531a1e55b0a739b0f42582f1c9747e5649ace.
CVE-2018-1000802
Python Software Foundation Python (CPython) version 2.7 contains a CWE ...
openSUSE-SU-2018:3052-1
Security update for python
SUSE-SU-2018:3002-1
Security update for python
BDU:2019-00437
Уязвимость функции make_archive модуля shutil интерпретатора языка программирования Python (CPython), позволяющая нарушителю вызвать отказ в обслуживании или получить несанкционированный доступ к информации
openSUSE-SU-2018:3703-1
Security update for python, python-base
SUSE-SU-2019:2053-2
Security update for python3
SUSE-SU-2019:2053-1
Security update for python3
SUSE-SU-2018:3554-2
Security update for python, python-base
SUSE-SU-2018:3554-1
Security update for python, python-base
SUSE-SU-2020:0302-1
Security update for python36
openSUSE-SU-2020:0086-1
Security update for python3
SUSE-SU-2020:0114-1
Security update for python3
SUSE-SU-2020:0234-1
Security update for python
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-grfr-pqc4-fqmw Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in shutil module (make_archive function) that can result in Denial of service, Information gain via injection of arbitrary files on the system or entire drive. This attack appear to be exploitable via Passage of unfiltered user input to the function. This vulnerability appears to have been fixed in after commit add531a1e55b0a739b0f42582f1c9747e5649ace. | CVSS3: 9.8 | 24% Средний | около 3 лет назад |
 | CVE-2018-1000802 Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in shutil module (make_archive function) that can result in Denial of service, Information gain via injection of arbitrary files on the system or entire drive. This attack appear to be exploitable via Passage of unfiltered user input to the function. This vulnerability appears to have been fixed in after commit add531a1e55b0a739b0f42582f1c9747e5649ace. | CVSS3: 9.8 | 24% Средний | почти 7 лет назад |
 | CVE-2018-1000802 Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in shutil module (make_archive function) that can result in Denial of service, Information gain via injection of arbitrary files on the system or entire drive. This attack appear to be exploitable via Passage of unfiltered user input to the function. This vulnerability appears to have been fixed in after commit add531a1e55b0a739b0f42582f1c9747e5649ace. | CVSS3: 6.5 | 24% Средний | почти 7 лет назад |
 | CVE-2018-1000802 Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in shutil module (make_archive function) that can result in Denial of service, Information gain via injection of arbitrary files on the system or entire drive. This attack appear to be exploitable via Passage of unfiltered user input to the function. This vulnerability appears to have been fixed in after commit add531a1e55b0a739b0f42582f1c9747e5649ace. | CVSS3: 9.8 | 24% Средний | почти 7 лет назад |
| CVE-2018-1000802 Python Software Foundation Python (CPython) version 2.7 contains a CWE ... | CVSS3: 9.8 | 24% Средний | почти 7 лет назад |
 | openSUSE-SU-2018:3052-1 Security update for python | 24% Средний | больше 6 лет назад | |
| SUSE-SU-2018:3002-1 Security update for python | 24% Средний | больше 6 лет назад | |
 | BDU:2019-00437 Уязвимость функции make_archive модуля shutil интерпретатора языка программирования Python (CPython), позволяющая нарушителю вызвать отказ в обслуживании или получить несанкционированный доступ к информации | CVSS3: 9.8 | 24% Средний | почти 7 лет назад |
| openSUSE-SU-2018:3703-1 Security update for python, python-base | больше 6 лет назад | ||
| SUSE-SU-2019:2053-2 Security update for python3 | почти 6 лет назад | ||
| SUSE-SU-2019:2053-1 Security update for python3 | почти 6 лет назад | ||
| SUSE-SU-2018:3554-2 Security update for python, python-base | больше 6 лет назад | ||
| SUSE-SU-2018:3554-1 Security update for python, python-base | больше 6 лет назад | ||
| SUSE-SU-2020:0302-1 Security update for python36 | больше 5 лет назад | ||
| openSUSE-SU-2020:0086-1 Security update for python3 | больше 5 лет назад | ||
| SUSE-SU-2020:0114-1 Security update for python3 | больше 5 лет назад | ||
| SUSE-SU-2020:0234-1 Security update for python | больше 5 лет назад |
Уязвимостей на страницу