Python is vulnerable to injection vulnerability. The vulnerability exists due to a lack of sanitization on the URL string parsed into the urlparse method allowing an attacker to inject maliciously crafted URL.

CPENameOperatorVersion
python3.9:sideq3.9.0-5
python3.8:focaleq3.8.2-1ubuntu1.2
python3.8:focaleq3.8.5-1~20.04
python3.8:focaleq3.8.2-1ubuntu1
python2.7:bioniceq2.7.17-1~18.04ubuntu1.6
python2.7:bioniceq2.7.15~rc1-1
python2.7:bioniceq2.7.17-1~18.04ubuntu1.2
python2.7:bioniceq2.7.17-1~18.04ubuntu1.1
python3.6:bioniceq3.6.9-1~18.04ubuntu1.1
python3.6:bioniceq3.6.5-3

Name	Operator	Version
python3.9:sid	eq	3.9.0-5
python3.8:focal	eq	3.8.2-1ubuntu1.2
python3.8:focal	eq	3.8.5-1~20.04
python3.8:focal	eq	3.8.2-1ubuntu1
python2.7:bionic	eq	2.7.17-1~18.04ubuntu1.6
python2.7:bionic	eq	2.7.15~rc1-1
python2.7:bionic	eq	2.7.17-1~18.04ubuntu1.2
python2.7:bionic	eq	2.7.17-1~18.04ubuntu1.1
python3.6:bionic	eq	3.6.9-1~18.04ubuntu1.1
python3.6:bionic	eq	3.6.5-3

Rows per page:

1-10 of 241

References

bugs.python.org/issue43882

lists.fedoraproject.org/archives/list/[email protected]/message/CSD2YBXP3ZF44E44QMIIAR5VTO35KTRB/

lists.fedoraproject.org/archives/list/[email protected]/message/UDBDBAU6HUPZHISBOARTXZ5GKHF2VH5U/

security-tracker.debian.org/tracker/CVE-2022-0391

security.netapp.com/advisory/ntap-20220225-0009/

www.oracle.com/security-alerts/cpuapr2022.html

cbl_mariner 2

openvas 29

ubuntucve 1

prion 1

osv 12

nvd 1

cve 1

ibm 14

cloudlinux 1

nessus 48

fedora 3

cvelist 1

redhatcve 1

debiancve 1

redos 1

almalinux 3

ubuntu 3

redhat 16

oraclelinux 4

suse 1

mageia 1

cloudfoundry 1

rocky 2

rosalinux 1

amazon 2

photon 3

debian 1

gentoo 1

hp 1

ics 1

oracle 1

avleonov 1

cbl_mariner

CVE-2022-0391 affecting package python2 2.7.18-14

2022-03-09 18:31:42

CVE-2022-0391 affecting package python3 3.7.10-7

2022-03-09 18:31:42

openvas

Python urllib.parse Vulnerability (bpo-43882) - Mac OS X

2022-02-14 00:00:00

Huawei EulerOS: Security Advisory for python (EulerOS-SA-2022-1548)

2022-04-25 00:00:00

Huawei EulerOS: Security Advisory for python (EulerOS-SA-2023-1061)

2023-01-09 00:00:00

ubuntucve

CVE-2022-0391

2022-02-09 00:00:00

prion

Design/Logic Flaw

2022-02-09 23:15:00

osv

BIT-python-2022-0391

2024-03-06 11:05:40

CVE-2022-0391

2022-02-09 23:15:16

urllib.parse should sanitize urls containing ASCII newline and tabs.

2022-02-09 00:00:00

nvd

CVE-2022-0391

2022-02-09 23:15:16

cve

CVE-2022-0391

2022-02-09 23:15:16

ibm

Security Bulletin: A vulnerability in Python affects IBM Elastic Storage System (CVE-2022-0391)

2022-12-15 09:21:30

Security Bulletin: IBM Security SOAR is using a component with known vulnerabilities (CVE-2022-0391)

2022-06-01 10:29:04

Security Bulletin: IBM Netezza for Cloud Pak for Data is vulnerable to injection attack due to urllib package in Python3 (CVE-2022-0391)

2022-08-09 05:52:22

cloudlinux

Fix of CVE: CVE-2022-0391

2022-03-07 15:12:37

nessus

EulerOS Virtualization 3.0.2.6 : python (EulerOS-SA-2023-1061)

2023-01-06 00:00:00

EulerOS 2.0 SP5 : python (EulerOS-SA-2022-1548)

2022-04-25 00:00:00

Oracle Linux 6 : python (ELSA-2023-3550)

2023-06-26 00:00:00

fedora

[SECURITY] Fedora 34 Update: mingw-python3-3.9.4-4.fc34

2022-02-06 02:02:39

[SECURITY] Fedora 34 Update: python2.7-2.7.18-20.fc34

2022-02-24 23:27:18

[SECURITY] Fedora 35 Update: python2.7-2.7.18-20.fc35

2022-02-24 23:09:24

cvelist

CVE-2022-0391

2022-02-09 00:00:00

redhatcve

CVE-2022-0391

2022-01-27 18:43:26

debiancve

CVE-2022-0391

2022-02-09 23:15:16

redos

ROS-20220407-03

2022-04-07 00:00:00

almalinux

Moderate: python3 security update

2022-09-13 00:00:00

Moderate: python38:3.8 and python38-devel:3.8 security update

2022-05-10 06:23:23

Moderate: python27:2.7 security update

2022-05-10 08:02:50

ubuntu

Python vulnerabilities

2022-08-24 00:00:00

Python vulnerabilities

2022-03-28 00:00:00

Python vulnerability

2022-05-23 00:00:00

redhat

(RHSA-2022:6457) Moderate: python3 security update

2022-09-13 07:37:08

(RHSA-2022:1663) Moderate: python27-python and python27-python-pip security update

2022-05-02 07:48:36

(RHSA-2022:1764) Moderate: python38:3.8 and python38-devel:3.8 security update

2022-05-10 06:23:23

oraclelinux

python security update

2023-06-26 00:00:00

python3 security update

2022-09-14 00:00:00

python38:3.8 and python38-devel:3.8 security update

2022-05-17 00:00:00

suse

Security update for python (moderate)

2022-04-01 00:00:00

mageia

Updated python packages fix security vulnerability

2022-10-13 23:05:19

cloudfoundry

USN-5342-1: Python vulnerabilities | Cloud Foundry

2022-05-23 00:00:00

rocky

python38:3.8 and python38-devel:3.8 security update

2022-05-10 06:23:23

python27:2.7 security update

2022-05-10 08:02:50

rosalinux

Advisory ROSA-SA-2023-2203

2023-08-01 12:58:39

amazon

Medium: python

2022-05-31 23:50:00

Medium: python27

2022-05-31 23:47:00

photon

Important Photon OS Security Update - PHSA-2022-0450

2022-03-10 00:00:00

Important Photon OS Security Update - PHSA-2022-0367

2022-03-07 00:00:00

Important Photon OS Security Update - PHSA-2022-3.0-0367

2022-03-07 00:00:00

debian

[SECURITY] [DLA 3575-1] python2.7 security update

2023-09-20 19:13:38

gentoo

Python, PyPy3: Multiple Vulnerabilities

2023-05-03 00:00:00

HP ThinPro 8.0 SP 8 Security Updates

2024-03-01 00:00:00

ics

Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1

2023-12-14 12:00:00

oracle

Oracle Critical Patch Update Advisory - April 2022

2022-04-19 00:00:00

avleonov

Scanvus now supports Vulners and Vulns.io VM Linux vulnerability detection APIs

2022-12-30 18:03:13

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.002 Low

EPSS

Percentile

59.6%

JSON

Related for VERACODE:34059