rpm package
opensuse/python-Werkzeug&distro=openSUSE Leap 15.6
pkg:rpm/opensuse/python-Werkzeug&distro=openSUSE%20Leap%2015.6
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-49767 | — | < 2.3.6-150400.6.12.1 | 2.3.6-150400.6.12.1 | Oct 25, 2024 | Werkzeug is a Web Server Gateway Interface web application library. Applications using `werkzeug.formparser.MultiPartParser` corresponding to a version of Werkzeug prior to 3.0.6 to parse `multipart/form-data` requests (e.g. all flask applications) are vulnerable to a relatively | ||
| CVE-2024-34069 | — | < 2.3.6-150400.6.9.1 | 2.3.6-150400.6.9.1 | May 6, 2024 | Werkzeug is a comprehensive WSGI web application library. The debugger in affected versions of Werkzeug can allow an attacker to execute code on a developer's machine under some circumstances. This requires the attacker to get the developer to interact with a domain and subdomain |
- CVE-2024-49767Oct 25, 2024affected < 2.3.6-150400.6.12.1fixed 2.3.6-150400.6.12.1
Werkzeug is a Web Server Gateway Interface web application library. Applications using `werkzeug.formparser.MultiPartParser` corresponding to a version of Werkzeug prior to 3.0.6 to parse `multipart/form-data` requests (e.g. all flask applications) are vulnerable to a relatively
- CVE-2024-34069May 6, 2024affected < 2.3.6-150400.6.9.1fixed 2.3.6-150400.6.9.1
Werkzeug is a comprehensive WSGI web application library. The debugger in affected versions of Werkzeug can allow an attacker to execute code on a developer's machine under some circumstances. This requires the attacker to get the developer to interact with a domain and subdomain