Skip to main content

Jinja2

3 CVEs product

Monthly

CVE-2019-8341 CRITICAL POC THREAT Act Now

An issue was discovered in Jinja2 2.10. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection RCE Jinja2 Leap
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
44.8%
CVE-2014-1402 PyPI MEDIUM PATCH This Month

The default configuration for bccache.FileSystemBytecodeCache in Jinja2 before 2.7.2 does not properly create temporary files, which allows local users to gain privileges via a crafted .cache file. Rated medium severity (CVSS 4.4).

Privilege Escalation Jinja2
NVD
CVSS 2.0
4.4
EPSS
0.1%
CVE-2014-0012 PyPI MEDIUM POC PATCH This Month

FileSystemBytecodeCache in Jinja2 2.7.2 does not properly create temporary directories, which allows local users to gain privileges by pre-creating a temporary directory with a user's uid. Rated medium severity (CVSS 4.4). Public exploit code available.

Privilege Escalation Jinja2
NVD GitHub
CVSS 2.0
4.4
EPSS
0.1%
EPSS 45% CVSS 9.8
CRITICAL POC THREAT Act Now

An issue was discovered in Jinja2 2.10. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection RCE Jinja2 +1
NVD GitHub Exploit-DB
EPSS 0% CVSS 4.4
MEDIUM PATCH This Month

The default configuration for bccache.FileSystemBytecodeCache in Jinja2 before 2.7.2 does not properly create temporary files, which allows local users to gain privileges via a crafted .cache file. Rated medium severity (CVSS 4.4).

Privilege Escalation Jinja2
NVD
EPSS 0% CVSS 4.4
MEDIUM POC PATCH This Month

FileSystemBytecodeCache in Jinja2 2.7.2 does not properly create temporary directories, which allows local users to gain privileges by pre-creating a temporary directory with a user's uid. Rated medium severity (CVSS 4.4). Public exploit code available.

Privilege Escalation Jinja2
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy