CVE-2026-5713

MEDIUM

Out-of-bounds read/write during remote profiling and asyncio process introspection when connecting to malicious target

Title source: cna

Description

The "profiling.sampling" module (Python 3.15+) and "asyncio introspection capabilities" (3.14+, "python -m asyncio ps" and "python -m asyncio pstree") features could be used to read and write addresses in a privileged process if that process connected to a malicious or "infected" Python process via the remote debugging feature. This vulnerability requires persistently and repeatedly connecting to the process to be exploited, even after the connecting process crashes with high likelihood due to ASLR.

References (6)

Core 6

Core References

Issue Tracking issue-tracking

https://github.com/python/cpython/issues/148178

Patch patch

https://github.com/python/cpython/commit/289fd2c97a7e5aecb8b69f94f5e838ccfeee7e67

View Patch ZIP pw:eip

Patch patch

https://github.com/python/cpython/commit/316f6265b7f9ca4ffed5346b747475ef1943f35d

View Patch ZIP pw:eip

Patch patch

https://github.com/python/cpython/pull/148187

Vendor Advisory vendor-advisory

https://mail.python.org/archives/list/[email protected]/thread/OG4RHARYSNIE22GGOMVMCRH76L5HKPLM/

Mailing List

http://www.openwall.com/lists/oss-security/2026/04/15/6

Scores

CVSS v4 5.3

EPSS 0.0013

EPSS Percentile 3.1%

CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-121 CWE-125

Status published

Products (3)

Python Software Foundation/CPython 3.14.0 - 3.14.5

Python Software Foundation/CPython 3.14.0 - 3.15.0

Python Software Foundation/CPython 3.15.0a1 - 3.15.0b1

Published Apr 14, 2026

Tracked Since Apr 14, 2026