Python Multiple Vulnerabilities
Last Update Date:
15 Oct 2020 10:33
Release Date:
15 Oct 2020
4608
Views
RISK: Medium Risk
TYPE: Operating Systems - Application Platforms
Multiple vulnerabilities were identified in Python, a remote attacker could exploit some of these vulnerabilities to trigger spoofing, disclose sensitive information and cross-site scripting on the targeted system.
Impact
- Cross-Site Scripting
- Information Disclosure
- Spoofing
System / Technologies affected
- Version before 3.5.10
- Version before 3.6.12
- Version before 3.7.9
- Version before 3.8.5
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- The vendor has issued a fix : https://python-security.readthedocs.io/vuln/http-header-injection-method.html
Vulnerability Identifier
Source
Related Link
- https://people.canonical.com/~ubuntu-security/cve/2020/CVE-2020-26116.html?_ga=2.176139819.888422271.1602725104-668432677.1594169753
- https://python-security.readthedocs.io/vuln/http-header-injection-method.html
- https://ubuntu.com/security/notices/USN-4581-1
- https://www.auscert.org.au/bulletins/ESB-2020.3542/
Share with