Grafana Remote Code Execution
This repository contains a Python script that exploits a remote code execution vulnerability in Grafana's SQL Expressions feature. By leveraging insufficient input sanitization, this exploit allows an...
View ArticleRed Hat Security Advisory 2024-8834-03
Red Hat Security Advisory 2024-8834-03 - An update for python-gevent is now available for Red Hat Enterprise Linux 8. Issues addressed include a privilege escalation vulnerability.
View ArticleScapy Packet Manipulation Tool 2.6.1
Scapy is a powerful interactive packet manipulation tool, packet generator, network scanner, network discovery tool, and packet sniffer. It provides classes to interactively create packets or sets of...
View ArticleRed Hat Security Advisory 2024-9150-03
Red Hat Security Advisory 2024-9150-03 - An update for python-jinja2 is now available for Red Hat Enterprise Linux 9.
View ArticleRed Hat Security Advisory 2024-9281-03
Red Hat Security Advisory 2024-9281-03 - An update for python-jwcrypto is now available for Red Hat Enterprise Linux 9.
View ArticleRed Hat Security Advisory 2024-9423-03
Red Hat Security Advisory 2024-9423-03 - An update for python-dns is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.
View ArticleRed Hat Security Advisory 2024-9481-03
Red Hat Security Advisory 2024-9481-03 - An update for python-django is now available for Red Hat OpenStack Platform 18.0.3 . Issues addressed include a traversal vulnerability.
View ArticlePyload Remote Code Execution
CVE-2024-28397 is a sandbox escape in js2py versions 0.74 and below. js2py is a popular python package that can evaluate javascript code inside a python interpreter. The vulnerability allows for an...
View ArticleUbuntu Security Notice USN-7015-5
Ubuntu Security Notice 7015-5 - USN-7015-1 fixed several vulnerabilities in Python. This update provides the corresponding update for CVE-2024-6232 and CVE-2024-6923 for python2.7 in Ubuntu 14.04 LTS,...
View ArticleUbuntu Security Notice USN-7116-1
Ubuntu Security Notice 7116-1 - It was discovered that Python incorrectly handled quoting path names when using the venv module. A local attacker able to control virtual environments could possibly use...
View ArticleDebian Security Advisory 5815-1
Debian Linux Security Advisory 5815-1 - The Qualys Threat Research Unit discovered several local privilege escalation vulnerabilities in needrestart, a utility to check which daemons need to be...
View ArticleUbuntu Security Notice USN-7015-6
Ubuntu Security Notice 7015-6 - USN-7015-5 fixed vulnerabilities in python2.7. The update introduced several minor regressions. This update fixes the problem. It was discovered that the Python email...
View ArticleRed Hat Security Advisory 2024-9975-03
Red Hat Security Advisory 2024-9975-03 - An update for python-werkzeug is now available for Red Hat OpenStack Platform 17.1. Issues addressed include a remote shell upload vulnerability.
View ArticleRed Hat Security Advisory 2024-9976-03
Red Hat Security Advisory 2024-9976-03 - An update for python-werkzeug is now available for Red Hat OpenStack Platform 17.1. Issues addressed include a remote shell upload vulnerability.
View ArticleRed Hat Security Advisory 2024-9977-03
Red Hat Security Advisory 2024-9977-03 - An update for python-zipp is now available for Red Hat OpenStack Platform 17.1. Issues addressed include a denial of service vulnerability.
View ArticleRed Hat Security Advisory 2024-9983-03
Red Hat Security Advisory 2024-9983-03 - An update for python-webob is now available for Red Hat OpenStack Platform 17.1.
View ArticleRed Hat Security Advisory 2024-9984-03
Red Hat Security Advisory 2024-9984-03 - An update for python-sqlparse is now available for Red Hat OpenStack Platform 17.1. Issues addressed include a denial of service vulnerability.
View ArticleRed Hat Security Advisory 2024-9985-03
Red Hat Security Advisory 2024-9985-03 - An update for python-urllib3 is now available for Red Hat OpenStack Platform 17.1.
View ArticleRed Hat Security Advisory 2024-9986-03
Red Hat Security Advisory 2024-9986-03 - An update for python-sqlparse is now available for Red Hat OpenStack Platform 17.1. Issues addressed include a denial of service vulnerability.
View ArticleRed Hat Security Advisory 2024-9988-03
Red Hat Security Advisory 2024-9988-03 - An update for python-requests is now available for Red Hat OpenStack Platform 17.1.
View ArticleRed Hat Security Advisory 2024-9989-03
Red Hat Security Advisory 2024-9989-03 - An update for python-webob is now available for Red Hat OpenStack Platform 17.1.
View ArticleRed Hat Security Advisory 2024-9990-03
Red Hat Security Advisory 2024-9990-03 - An update for openstack-tripleo-common and python-tripleoclient is now available for Red Hat OpenStack Platform 17.1.
View ArticleRed Hat Security Advisory 2024-9991-03
Red Hat Security Advisory 2024-9991-03 - An update for openstack-tripleo-common and python-tripleoclient is now available for Red Hat OpenStack Platform 17.1.
View ArticleRed Hat Security Advisory 2024-10590-03
Red Hat Security Advisory 2024-10590-03 - An update for python-tornado is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.
View ArticleRed Hat Security Advisory 2024-10696-03
Red Hat Security Advisory 2024-10696-03 - An update for python-werkzeug is now available for Red Hat OpenStack Platform 16.2. Issues addressed include a remote shell upload vulnerability.
View Article