python

250 tracked vulnerabilities.

CVE-2014-1604
RPLY < 0.7.1 - Cache Spoofing via Predictable Temporary File
Jan 28, 2014
EPSS 0.00
CVE-2013-1753 HIGH
Python 2.7.0-2.7.8 - Denial of Service via gzip_decode Function
Mar 11, 2020
CVSS 7.5
EPSS 0.00
CVE-2013-1895 HIGH
py-bcrypt < 0.3 - Authentication Bypass via Concurrent Memory Access
Jan 28, 2020
CVSS 7.5
EPSS 0.01
CVE-2013-7440 MEDIUM
CPython <2.7.9, <3.3.3 - SSL Spoofing
Jun 07, 2016
CVSS 5.9
EPSS 0.00
CVE-2013-7040
macOS X < 10.10.4 - Denial of Service via Predictable Hash Collisions
May 19, 2014
EPSS 0.00
CVE-2013-7338
Python - Denial of Service via Zip File Size Handling
Apr 22, 2014
EPSS 0.08
CVE-2013-0340
libexpat < 2.4.0 - XML External Entity Injection
Jan 21, 2014
EPSS 0.00
CVE-2013-2099
Python 3.2.x and 3.3.x - Denial of Service via SSL Certificate Common Name Wildcard Handling
Oct 09, 2013
EPSS 0.03
CVE-2013-4238
Canonical Ubuntu Linux - Improper Input Validation
Aug 18, 2013
EPSS 0.01
CVE-2013-1633
setuptools < 0.7 - Remote Code Execution via Untrusted HTTP Package Retrieval
Aug 06, 2013
EPSS 0.01
CVE-2012-5578 MEDIUM
Python keyring < 0.10 - Insecure Database File Permissions
Nov 25, 2019
CVSS 6.2
EPSS 0.00
CVE-2012-0877 HIGH
PyXML - Denial of Service via Hash Table Collisions
Nov 22, 2019
CVSS 7.5
EPSS 0.01
CVE-2012-5577 HIGH
Python keyring lib <0.10 - Info Disclosure
Oct 28, 2019
CVSS 7.5
EPSS 0.00
CVE-2012-4571
Python Keyring 0.9.1 - Info Disclosure
Nov 30, 2012
EPSS 0.00
CVE-2012-1150
Python < 2.6.8, 2.7.x < 2.7.3, 3.x < 3.1.5, 3.2.x < 3.2.3 - Denial of Service via Hash Collision
Oct 05, 2012
EPSS 0.02
CVE-2012-0845
Python <2.6.8, <2.7.x-<2.7.3, <3.x-<3.1.5, <3.2.x-<3.2.3 - DoS
Oct 05, 2012
EPSS 0.03
CVE-2012-3458
Beaker < 1.6.4 - Sensitive Session Data Exposure via ECB Mode Encryption
Sep 15, 2012
EPSS 0.01
CVE-2012-2135
Python 3.1-3.3 - Denial of Service via UTF-16 Decoder Memory Corruption
Aug 14, 2012
EPSS 0.01
CVE-2012-0876
libexpat < 2.1.0 - Denial of Service via Hash Collision in XML Parser
Jul 03, 2012
EPSS 0.00
CVE-2011-4944
Python 2.6-3.2 - Race Condition Leading to Credential Exposure via World-Readable .pypirc
Aug 27, 2012
EPSS 0.00
CVE-2011-4940
Python < 2.5.6 - Cross-Site Scripting via UTF-7 Encoding in SimpleHTTPServer
Jun 27, 2012
EPSS 0.00
CVE-2011-4617
virtualenv < 1.5 - Arbitrary File Overwrite via Symlink Attack
Dec 31, 2011
EPSS 0.00
CVE-2011-1521
Python <2.7.2, <3.2.1 - Info Disclosure
May 24, 2011
EPSS 0.01
CVE-2011-1015
Python 2.5, 2.6, 3.0 - Unauthenticated Script Source Code Exposure via CGIHTTPServer is_cgi Method
May 09, 2011
EPSS 0.00
CVE-2010-3493
Python 2.6, 2.7, 3.1, 3.2 alpha - Denial of Service via Race Condition in smtpd.py
Oct 19, 2010
EPSS 0.02
Products
python 132 pillow 60 urllib3 19 requests 6 keyring 3 setuptools 3 black 2 pyxdg 2 typed_ast 2 Protobuf 1 beaker 1 cpython 1 hpack 1 hyper 1 jw.util 1 novajoin 1 openpyxl 1 py-bcrypt 1 pybluemonday 1 pymanager 1 pypi 1 pypiserver 1 python-gnupg 1 python_priority_library 1 pyxml 1 rply 1 rsa 1 tablib 1 tgcaptcha2 1 tkvideoplayer 1
Quick Filters
Critical CVEs With Exploits In CISA KEV