The host is installed with Python before 2.7.10 or 3.x before 3.4.4 and is prone to a CRLF injection vulnerability. A flaw is present in the application, which fails to properly handle CRLF sequences in a URL. Successful exploitation could allow attackers to inject arbitrary HTTP headers.
The host is installed with the DES and Triple DES ciphers and is prone to an information disclosure vulnerability. A flaw is present in the applications, which fail to properly handle the DES and Triple DES ciphers, as used in the TLS, SSH, IPSec protocols, other protocols and products. Successful exploitation allows remote attackers to obtain cleartext data via a birthday attack against a long-du ...
The host is installed with Oracle VM VirtualBox before 5.1.32 or 5.2.4 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to handle vectors related to Core (OpenSSL). Successful exploitation allows attackers to affect Confidentiality.
The host is installed with python before versions 2.7.15 or 3.4.9 and is prone to a denial-of-service vulnerability. The flaw is present in the application, which fails to properly handle catastrophic backtracking in pop3lib's apop() method. Successful exploitation allow context-dependent attackers to cause denial-of-service.
The host is installed with python before versions 2.7.15 or 3.4.9 and is prone to a denial-of-service vulnerability. The flaw is present in the application, which fails to properly handle catastrophic backtracking in difflib.IS_LINE_JUNK method. Successful exploitation allow context-dependent attackers to cause denial-of-service.
The host is installed with python 2.7.0 is prone to a denial-of-service vulnerability. The flaw is present in the application, which fails to properly handle the passage of unfiltered user input to the function. Successful exploitation allow attackers to cause a denial of service, information gain via injection of arbitrary files on the system or entire drive.
The host is installed with Python through versions 2.7.16 or 3.7.2 and is prone to an information disclosure vulnerability. The flaw is present in the application, which fails to properly handle unicode encoding during NKFC normalization. Successful exploitation allows attackers to locate cookies or authentication data and send that information to a different host.
The host is installed with Python through versions 2.7.16 or 3.7.2 and is prone to a CRLF injection vulnerability. The flaw is present in the application, which fails to properly handle an issue in urrlib2. Successful exploitation allows attackers to initiate CRLF injection.
The host is installed with Python through versions 2.7.16 and is prone to a security bypass vulnerability. The flaw is present in the application, which fails to properly handle an issue in local_file: scheme. Successful exploitation allows attackers to bypass protection mechanisms that blacklist file: URIs.
The host is installed with Python through 2.7.13, 3.4.8 and 3.5.5 and is prone to an integer overflow vulnerability. The flaw is present in the application, which fails to properly handle an integer overflow in the PyString_DecodeEscape function in stringobject.c. Successful exploitation allows attackers to cause heap-based buffer overflow and possible arbitrary code execution.