Python Security

Grafana Remote Code Execution

Python Files ≈ Packet Storm Oct 24, 2024 | 13:37 pm

This repository contains a Python script that exploits a remote code execution vulnerability in Grafana's SQL Expressions feature. By leveraging insufficient input sanitization, this exploit allows an attacker to execute arbitrary shell commands on the server. This is made possible[…]

Red Hat Security Advisory 2024-8365-03

Python Files ≈ Packet Storm Oct 24, 2024 | 13:23 pm

Red Hat Security Advisory 2024-8365-03 - An update for python-idna is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Issues addressed include a denial of service vulnerability.

Debian Security Advisory 5795-1

Python Files ≈ Packet Storm Oct 22, 2024 | 15:51 pm

Debian Linux Security Advisory 5795-1 - Cedric Krier discovered that python-sql, a library to write SQL queries in a pythonic way, performed insufficient sanitizing which could result in SQL injection.

Red Hat Security Advisory 2024-8102-03

Python Files ≈ Packet Storm Oct 15, 2024 | 14:04 pm

Red Hat Security Advisory 2024-8102-03 - An update for python-gevent is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Issues addressed include a privilege escalation vulnerability.

Ubuntu Security Notice USN-7015-4

Python Files ≈ Packet Storm Oct 14, 2024 | 13:44 pm

Ubuntu Security Notice 7015-4 - USN-7015-1 fixed several vulnerabilities in Python. This update provides the corresponding update for CVE-2023-27043 for python2.7 and python3.5 in Ubuntu 14.04 LTS. It was discovered that the Python email module incorrectly parsed email addresses that[…]

Debian Security Advisory 5791-1

Python Files ≈ Packet Storm Oct 14, 2024 | 13:43 pm

Debian Linux Security Advisory 5791-1 - Elyas Damej discovered that a sandbox mechanism in ReportLab, a Python library to create PDF documents, could be bypassed which may result in the execution of arbitrary code when converting malformed HTML to a[…]

Red Hat Security Advisory 2024-7785-03

Python Files ≈ Packet Storm Oct 8, 2024 | 14:26 pm

Red Hat Security Advisory 2024-7785-03 - An update for python-gevent is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Issues addressed include a privilege escalation vulnerability.

Grav CMS 1.7.44 Server-Side Template Injection

Python Files ≈ Packet Storm Oct 7, 2024 | 14:22 pm

GenGravSSTIExploit is a proof of concept Python script that exploits an authenticated server-side template injection (SSTI) vulnerability in Grav CMS versions 1.7.44 and below. This vulnerability allows a user with editor permissions to execute OS commands on a remote server.

Ubuntu Security Notice USN-7015-3

Python Files ≈ Packet Storm Oct 1, 2024 | 13:47 pm

Ubuntu Security Notice 7015-3 - USN-7015-1 fixed several vulnerabilities in Python. This update provides the corresponding updates for CVE-2023-27043 for python2.7 in Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS, and for python3.5 in Ubuntu[…]

Red Hat Security Advisory 2024-7421-03

Python Files ≈ Packet Storm Oct 1, 2024 | 13:41 pm

Red Hat Security Advisory 2024-7421-03 - An update for python-gevent is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6[…]

Scapy Packet Manipulation Tool 2.6.0

Python Files ≈ Packet Storm Sep 30, 2024 | 14:44 pm

Scapy is a powerful interactive packet manipulation tool, packet generator, network scanner, network discovery tool, and packet sniffer. It provides classes to interactively create packets or sets of packets, manipulate them, send them over the wire, sniff other packets from[…]

Red Hat Security Advisory 2024-6907-03

Python Files ≈ Packet Storm Sep 24, 2024 | 13:45 pm

Red Hat Security Advisory 2024-6907-03 - An update for python-setuptools is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Issues addressed include a code execution vulnerability.

Ubuntu Security Notice USN-7015-2

Python Files ≈ Packet Storm Sep 20, 2024 | 15:36 pm

Ubuntu Security Notice 7015-2 - USN-7015-1 fixed several vulnerabilities in Python. This update provides one of the corresponding updates for python2.7 for Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS, and a second for python3.5[…]

Red Hat Security Advisory 2024-6775-03

Python Files ≈ Packet Storm Sep 20, 2024 | 15:22 pm

Red Hat Security Advisory 2024-6775-03 - An update for python-webob is now available for Red Hat OpenStack Platform 18.0.

MSI Analyzer

Python Files ≈ Packet Storm Sep 17, 2024 | 15:34 pm

This Python script for Linux can analyze Microsoft Windows .msi Installer files and point out potential vulnerabilities.

Ubuntu Security Notice USN-7015-1

Python Files ≈ Packet Storm Sep 17, 2024 | 15:31 pm

Ubuntu Security Notice 7015-1 - It was discovered that the Python email module incorrectly parsed email addresses that contain special characters. A remote attacker could possibly use this issue to bypass certain protection mechanisms. It was discovered that Python allowed[…]

Red Hat Security Advisory 2024-6662-03

Python Files ≈ Packet Storm Sep 16, 2024 | 12:45 pm

Red Hat Security Advisory 2024-6662-03 - An update for python-setuptools is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support.

Stegano 0.11.4

Python Files ≈ Packet Storm Sep 9, 2024 | 15:27 pm

Stegano is a basic Python Steganography module. Stegano implements two methods of hiding: using the red portion of a pixel to hide ASCII messages, and using the Least Significant Bit (LSB) technique. It is possible to use a more advanced[…]

Red Hat Security Advisory 2024-6358-03

Python Files ≈ Packet Storm Sep 5, 2024 | 15:00 pm

Red Hat Security Advisory 2024-6358-03 - An update for python-urllib3 is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions.

Red Hat Security Advisory 2024-6240-03

Python Files ≈ Packet Storm Sep 4, 2024 | 15:00 pm

Red Hat Security Advisory 2024-6240-03 - An update for python-urllib3 is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.

Red Hat Security Advisory 2024-6162-03

Python Files ≈ Packet Storm Sep 3, 2024 | 14:00 pm

Red Hat Security Advisory 2024-6162-03 - An update for python-urllib3 is now available for Red Hat Enterprise Linux 9.

Debian Security Advisory 5763-1

Python Files ≈ Packet Storm Sep 2, 2024 | 15:55 pm

Debian Linux Security Advisory 5763-1 - William Khem-Marquez discovered that Pymatgen, a Python library for materials analysis, could be tricked into running arbitrary code if a malformed CIF file is processed.

Apple TV Video Remote Control

Python Files ≈ Packet Storm Aug 31, 2024 | 21:27 pm

This Metasploit module plays a video on an AppleTV device. Note that AppleTV can be somewhat picky about the server that hosts the video. Tested servers include default IIS, default Apache, and Rubys WEBrick. For WEBrick, the default MIME list[…]

Microsoft Windows IPv6 CVE-2024-38063 Checker / Denial Of Service

Python Files ≈ Packet Storm Aug 29, 2024 | 14:16 pm

Microsoft Windows IPv6 vulnerability checking proof of concept python script that causes a denial of service. Windows 10 and 11 versions under 10.0.26100.1457 and Server 2016-2019-2022 versions under 10.0.17763.6189 are affected.

Beitrag teilen

Das Neueste von Support

Ähnliche Artikel