VYPR

Python

by Python (programming language)

Source repositories

CVEs (183)

  • CVE-2018-1061MedJun 19, 2018
    risk 0.43cvss 6.5epss 0.05

    python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in the difflib.IS_LINE_JUNK method. An attacker could use this flaw to cause denial of service.

  • CVE-2026-7210HigMay 11, 2026
    risk 0.42cvss 7.5epss 0.01

    `xml.parsers.expat` and `xml.etree.ElementTree` use insufficient entropy for Expat hash-flooding protection, which allows a crafted XML document to trigger hash flooding.\r\n\r\nFully mitigating this vulnerability requires both updating libexpat to 2.8.0 or later and applying…

  • CVE-2026-3087HigApr 27, 2026
    risk 0.42cvss 7.5epss 0.01

    If `shutil.unpack_archive()` is given a ZIP archive with an absolute Windows path containing a drive (`C:\\...`) then the archive will be extracted outside the target directory which is different than other operating systems. Only Windows is affected by this vulnerability.

  • CVE-2026-4224HigMar 16, 2026
    risk 0.42cvss 7.5epss 0.01

    When an Expat parser with a registered ElementDeclHandler parses an inline document type definition containing a deeply nested content model a C stack overflow occurs.

  • CVE-2026-3644HigMar 16, 2026
    risk 0.42cvss 7.5epss 0.00

    The fix for CVE-2026-0672, which rejected control characters in http.cookies.Morsel, was incomplete. The Morsel.update(), |= operator, and unpickling paths were not patched, allowing control characters to bypass input validation. Additionally, BaseCookie.js_output() lacked the…

  • CVE-2025-8194HigJul 28, 2025
    risk 0.42cvss 7.5epss 0.01

    There is a defect in the CPython “tarfile” module affecting the “TarFile” extraction and entry enumeration APIs. The tar implementation would process tar archives with negative offsets without error, resulting in an infinite loop and deadlock during the parsing of…

  • CVE-2025-4435HigJun 3, 2025
    risk 0.42cvss 7.5epss 0.00

    When using a TarFile.errorlevel = 0 and extracting with a filter the documented behavior is that any filtered members would be skipped and not extracted. However the actual behavior of TarFile.errorlevel = 0 in affected versions is that the member would still be extracted and…

  • CVE-2025-4330HigJun 3, 2025
    risk 0.42cvss 7.5epss 0.01

    Allows the extraction filter to be ignored, allowing symlink targets to point outside the destination directory, and the modification of some file metadata. You are affected by this vulnerability if using the tarfile module to extract untrusted tar archives using…

  • CVE-2025-4138HigJun 3, 2025
    risk 0.42cvss 7.5epss 0.01

    Allows the extraction filter to be ignored, allowing symlink targets to point outside the destination directory, and the modification of some file metadata. You are affected by this vulnerability if using the tarfile module to extract untrusted tar archives using…

  • CVE-2024-12254HigDec 6, 2024
    risk 0.42cvss 7.5epss 0.02

    Starting in Python 3.12.0, the asyncio._SelectorSocketTransport.writelines() method would not "pause" writing and signal to the Protocol to drain the buffer to the wire once the write buffer reached the "high-water mark". Because of this, Protocols would not periodically…

  • CVE-2024-4032HigJun 17, 2024
    risk 0.42cvss 7.5epss 0.01

    The “ipaddress” module contained incorrect information about whether certain IPv4 and IPv6 addresses were designated as “globally reachable” or “private”. This affected the is_private and is_global properties of the ipaddress.IPv4Address, ipaddress.IPv4Network,…

  • CVE-2017-18207MedMar 1, 2018
    risk 0.42cvss 6.5epss 0.01

    The Wave_read._read_fmt_chunk function in Lib/wave.py in Python through 3.6.4 does not ensure a nonzero channel value, which allows attackers to cause a denial of service (divide-by-zero and exception) via a crafted wav format audio file. NOTE: the vendor disputes this issue…

  • CVE-2024-0397HigJun 17, 2024
    risk 0.41cvss 7.4epss 0.01

    A defect was discovered in the Python “ssl” module where there is a memory race condition with the ssl.SSLContext methods “cert_store_stats()” and “get_ca_certs()”. The race condition can be triggered if the methods are called at the same time as certificates are…

  • CVE-2016-5699MedSep 2, 2016
    risk 0.40cvss 6.1epss 0.10

    CRLF injection vulnerability in the HTTPConnection.putheader function in urllib2 and urllib in CPython (aka Python) before 2.7.10 and 3.x before 3.4.4 allows remote attackers to inject arbitrary HTTP headers via CRLF sequences in a URL.

  • CVE-2026-4786HigApr 13, 2026
    risk 0.39cvss epss 0.00

    Mitgation of CVE-2026-4519 was incomplete. If the URL contained "%action" the mitigation could be bypassed for certain browser types the "webbrowser.open()" API could have commands injected into the underlying shell. See CVE-2026-4519 for details.

  • CVE-2026-1299MedJan 23, 2026
    risk 0.39cvss epss 0.01

    The email module, specifically the "BytesGenerator" class, didn’t properly quote newlines for email headers when serializing an email message allowing for header injection when an email is serialized. This is only applicable if using "LiteralHeader" writing headers that…

  • CVE-2024-4030HigMay 7, 2024
    risk 0.39cvss 7.1epss 0.00

    On Windows a directory returned by tempfile.mkdtemp() would not always have permissions set to restrict reading and writing to the temporary directory by other users, instead usually inheriting the correct permissions from the default location. Alternate configurations or users…

  • CVE-2014-4616MedAug 24, 2017
    risk 0.39cvss 5.9epss 0.08

    Array index error in the scanstring function in the _json module in Python 2.7 through 3.5 and simplejson before 2.6.1 allows context-dependent attackers to read arbitrary process memory via a negative index value in the idx argument to the raw_decode function.

  • CVE-2013-7440MedJun 7, 2016
    risk 0.39cvss 5.9epss 0.02

    The ssl.match_hostname function in CPython (aka Python) before 2.7.9 and 3.x before 3.3.3 does not properly handle wildcards in hostnames, which might allow man-in-the-middle attackers to spoof servers via a crafted certificate.

  • CVE-2026-7774MedJun 4, 2026
    risk 0.38cvss epss 0.01

    tarfile.data_filter could be bypassed using crafted link entries, including symlinks with empty or directory-like names, to redirect later archive members outside the intended extraction directory. This allowed a malicious tar archive to cause tarfile.extractall() to write files…

Page 2 of 10