CVE-2017-20052

MEDIUM

Python 2.7.13 - Uncontrolled Search Path

Title source: llm

Description

A vulnerability classified as problematic was found in Python 2.7.13. This vulnerability affects unknown code of the component pgAdmin4. The manipulation leads to uncontrolled search path. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

References (3)

[Exploit, Mailing List, Third Party Advisory] http://seclists.org/fulldisclosure/2017/Feb/92

[Third Party Advisory] https://security.netapp.com/advisory/ntap-20220804-0005/

[Third Party Advisory] https://vuldb.com/?id.97822

Scores

CVSS v3 5.0

EPSS 0.0045

EPSS Percentile 63.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

Classification

CWE

CWE-427

Status published

Affected Products (1)

python/python

Timeline

Published Jun 16, 2022

Tracked Since Feb 18, 2026