Vulnerabilities > CVE-2020-27619

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

python

fedoraproject

oracle

critical

NVD

Published: 2020-10-22

Updated: 2024-02-03

Summary

In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP.

Vulnerable Configurations

Part	Description	Count
Application	Python Python Python 3.7.0 Python Python 3.7.1 Python Python 3.7.2 Python Python 3.7.3 Python Python 3.7.4 Python Python 3.7.5 Python Python 3.7.6 Python Python 3.7.7 Python Python 3.7.8 Python Python 3.7.9 Python Python 3.9.0 Python Python 3.9.1 Python Python 3.8.0 Python Python 3.8.0B1 Python Python 3.8.1 Python Python 3.8.2 Python Python 3.8.3 Python Python 3.8.4 Python Python 3.8.5 Python Python 3.8.6 Python Python 3.8.7 Python Python 3.0.0 Python Python 3.0.1 Python Python 3.1 Python Python 3.1.0 Python Python 3.1.1 Python Python 3.1.2 Python Python 3.1.3 Python Python 3.1.4 Python Python 3.1.5 Python Python 3.1.2150 Python Python 3.2 Python Python 3.2.0 Python Python 3.2.1 Python Python 3.2.2 Python Python 3.2.3 Python Python 3.2.4 Python Python 3.2.5 Python Python 3.2.6 Python Python 3.2.2150 Python Python 3.3 Python Python 3.3.0 Python Python 3.3.1 Python Python 3.3.2 Python Python 3.3.3 Python Python 3.3.4 Python Python 3.3.5 Python Python 3.3.6 Python Python 3.3.7 Python Python 3.4 Python Python 3.4.0 Python Python 3.4.1 Python Python 3.4.2 Python Python 3.4.3 Python Python 3.4.4 Python Python 3.4.5 Python Python 3.4.6 Python Python 3.4.7 Python Python 3.4.8 Python Python 3.4.9 Python Python 3.4.10 Python Python 3.5 Python Python 3.5.0 Python Python 3.5.1 Python Python 3.5.2 Python Python 3.5.3 Python Python 3.5.4 Python Python 3.5.5 Python Python 3.5.6 Python Python 3.5.7 Python Python 3.5.8 Python Python 3.5.9 Python Python 3.5.10 Python Python 3.6 Python Python 3.6.0 Python Python 3.6.1 Python Python 3.6.2 Python Python 3.6.3 Python Python 3.6.4 Python Python 3.6.5 Python Python 3.6.6 Python Python 3.6.7 Python Python 3.6.8 Python Python 3.6.9 Python Python 3.6.10 Python Python 3.6.11 Python Python 3.6.12	307
Application	Oracle Oracle Communications Cloud Native Core Network Function Cloud Native Environment 22.2.0	1
OS	Fedoraproject Fedoraproject Fedora 33 Fedoraproject Fedora 34	2

Vulnerabilities > CVE-2020-27619 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2020-27619"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2020-27619