Download
| Alert*
oval:org.secpod.oval:def:50185
Python 3.x (64 bit) is installed oval:org.secpod.oval:def:61193 The host is installed with Python 3.6 through 3.6.10, 3.7 through 3.7.6, and 3.8 through 3.8.1 and is prone to an unsafe dll loading vulnerability. A flaw is present in the application, which fails to properly handle verification of api-ms-win-core-path-l1-1-0.dll that can be loaded and used instead ... oval:org.secpod.oval:def:64670 The host is installed with Python 3.8.4 and is prone to an incorrect authorization vulnerability. A flaw is present in the application, which fails to properly check sys.path restrictions specified in a python38._pth file. Successful exploitation allows code to be loaded from arbitrary locations. oval:org.secpod.oval:def:61460 The host is installed with Python through 3.7.2 and is prone to an uncontrolled resource consumption vulnerability. The flaw is present in the application, which fails to properly handle Lib/zipfile.py. Successful exploitation allows remote attackers to cause a denial-of-service. oval:org.secpod.oval:def:63981 The host is installed with Python 3.x through 3.8.3 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly compute hash values in the IPv4Interface and IPv6Interface classes. Successful exploitation allows remote attackers to cause a denial o ... oval:org.secpod.oval:def:61194 The host is installed with Python 2.7 through 2.7.17, 3.6 through 3.6.10, 3.7 through 3.7.6, and 3.8 through 3.8.1 and is prone to an unsafe dll loading vulnerability. A flaw is present in the application, which fails to properly handle verification of api-ms-win-core-path-l1-1-0.dll that can be loa ... oval:org.secpod.oval:def:69972 The host is installed with Python 3.6.x through 3.6.12, 3.7.x through 3.7.9, and 3.8.x through 3.8.7, 3.9.x through 3.9.1 and is prone to a buffer overflow vulnerability. A flaw is present in PyCArg_repr in _ctypes/callproc.c, which fails to properly handle unknown vectors. Successful exploitation a ... oval:org.secpod.oval:def:67777 The host is installed with Python 3.x through 3.6.12, 3.7.x through 3.7.9, 3.8.x through 3.8.6 or 3.9.0 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to handle an issue in Lib/test/multibytecodec_support.py. Successful exploitation allows ... oval:org.secpod.oval:def:54092 The host is installed with Python through 2.7.13, 3.4.8 and 3.5.5 and is prone to an integer overflow vulnerability. The flaw is present in the application, which fails to properly handle an integer overflow in the PyString_DecodeEscape function in stringobject.c. Successful exploitation allows atta ... oval:org.secpod.oval:def:50181 The host is installed with python before versions 2.7.15 or 3.4.9 and is prone to a denial-of-service vulnerability. The flaw is present in the application, which fails to properly handle catastrophic backtracking in pop3lib's apop() method. Successful exploitation allow context-dependent attackers ... oval:org.secpod.oval:def:58793 The host is installed with Python 2.x through 2.7.16, 3.x through 3.6.9 or 3.7.x through 3.7.4 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle untrusted input with set_server_title. Successful exploitation allows attackers to ... oval:org.secpod.oval:def:59794 The host is installed with Python before 2.7.13, 3.3.x before 3.3.7, 3.4.x before 3.4.6 or 3.5.x before 3.5.3 or 3.6.0 and is prone to an open redirection vulnerability. The flaw is present in the application, which fails to properly handle an issue in CGIHandler class. Successful exploitation allow ... oval:org.secpod.oval:def:50186 The host is installed with python before versions 2.7.15 or 3.4.9 and is prone to a denial-of-service vulnerability. The flaw is present in the application, which fails to properly handle catastrophic backtracking in difflib.IS_LINE_JUNK method. Successful exploitation allow context-dependent attack ... oval:org.secpod.oval:def:58415 The host is installed with Python 2.x through 2.7.16, 3.x through 3.5.7, 3.6.x through 3.6.9 or 3.7.x through 3.7.4 and is prone to a security bypass vulnerability. The flaw is present in the application, which fails to properly handle an issue in parsing email addresses. Successful exploitation all ... oval:org.secpod.oval:def:89569 The host is installed with Python through 2.7.18 or 3.x through 3.11 and is prone to an improper validation of syntactic correctness of input vulnerability. The flaw is present in the application, which fails to properly handle an issues in e-mail module. Successful exploitation allows attackers to ... |