| Max CVSS | 7.5 | Min CVSS | 3.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2014-4616 | 4.3 |
Array index error in the scanstring function in the _json module in Python 2.7 through 3.5 and simplejson before 2.6.1 allows context-dependent attackers to read arbitrary process memory via a negative index value in the idx argument to the raw_decod
|
13-07-2022 - 15:04 | 24-08-2017 - 20:29 | |
| CVE-2014-9365 | 5.8 |
The HTTP clients in the (1) httplib, (2) urllib, (3) urllib2, and (4) xmlrpclib libraries in CPython (aka Python) 2.x before 2.7.9 and 3.x before 3.4.3, when accessing an HTTPS URL, do not (a) check the certificate against a trust store or verify tha
|
25-10-2019 - 11:53 | 12-12-2014 - 11:59 | |
| CVE-2014-7185 | 6.4 |
Integer overflow in bufferobject.c in Python before 2.7.8 allows context-dependent attackers to obtain sensitive information from process memory via a large size and offset in a "buffer" function.
|
25-10-2019 - 11:53 | 08-10-2014 - 17:55 | |
| CVE-2014-1912 | 7.5 |
Buffer overflow in the socket.recvfrom_into function in Modules/socketmodule.c in Python 2.5 before 2.7.7, 3.x before 3.3.4, and 3.4.x before 3.4rc1 allows remote attackers to execute arbitrary code via a crafted string.
|
25-10-2019 - 11:53 | 01-03-2014 - 00:55 | |
| CVE-2013-7338 | 7.1 |
Python before 3.3.4 RC1 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a file size value larger than the size of the zip file to the (1) ZipExtFile.read, (2) ZipExtFile.read(n), (3) ZipExtFile.readlines,
|
21-08-2019 - 12:41 | 22-04-2014 - 14:23 | |
| CVE-2014-2667 | 3.3 |
Race condition in the _get_masked_mode function in Lib/os.py in Python 3.2 through 3.5, when exist_ok is set to true and multiple threads are used, might allow local users to bypass intended file permissions by leveraging a separate application vulne
|
01-07-2017 - 01:29 | 16-11-2014 - 01:59 |