Skip to main content

Numpy

6 CVEs product

Monthly

CVE-2021-41496 PyPI MEDIUM POC PATCH This Month

Buffer overflow in the array_from_pyobj function of fortranobject.c in NumPy < 1.19, which allows attackers to conduct a Denial of Service attacks by carefully constructing an array with negative. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Denial Of Service Numpy
NVD GitHub
CVSS 3.1
5.5
EPSS
0.4%
CVE-2021-41495 PyPI MEDIUM POC PATCH This Month

Null Pointer Dereference vulnerability exists in numpy.sort in NumPy &lt and 1.19 in the PyArray_DescrNew function due to missing return-value validation, which allows attackers to conduct DoS. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Numpy
NVD GitHub
CVSS 3.1
5.3
EPSS
1.2%
CVE-2021-34141 PyPI MEDIUM POC PATCH This Month

An incomplete string comparison in the numpy.core component in NumPy before 1.22.0 allows attackers to trigger slightly incorrect copying by constructing specific string objects. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Numpy Communications Cloud Native Core Policy
NVD GitHub
CVSS 3.1
5.3
EPSS
1.6%
CVE-2021-33430 PyPI MEDIUM POC PATCH This Month

A Buffer Overflow vulnerability exists in NumPy 1.9.x in the PyArray_NewFromDescr_int function of ctors.c when specifying arrays of large dimensions (over 32) from Python code, which could let a. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Buffer Overflow Python Denial Of Service Numpy
NVD GitHub
CVSS 3.1
5.3
EPSS
1.1%
CVE-2019-6446 PyPI CRITICAL POC PATCH THREAT Act Now

An issue was discovered in NumPy before 1.16.3. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Python RCE Deserialization Numpy Fedora
NVD GitHub
CVSS 3.0
9.8
EPSS
17.1%
CVE-2017-12852 PyPI HIGH POC PATCH This Week

The numpy.pad function in Numpy 1.13.1 and older versions is missing input validation. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Numpy
NVD GitHub
CVSS 3.0
7.5
EPSS
0.8%
EPSS 0% CVSS 5.5
MEDIUM POC PATCH This Month

Buffer overflow in the array_from_pyobj function of fortranobject.c in NumPy < 1.19, which allows attackers to conduct a Denial of Service attacks by carefully constructing an array with negative. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Denial Of Service Numpy
NVD GitHub
EPSS 1% CVSS 5.3
MEDIUM POC PATCH This Month

Null Pointer Dereference vulnerability exists in numpy.sort in NumPy &lt and 1.19 in the PyArray_DescrNew function due to missing return-value validation, which allows attackers to conduct DoS. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Numpy
NVD GitHub
EPSS 2% CVSS 5.3
MEDIUM POC PATCH This Month

An incomplete string comparison in the numpy.core component in NumPy before 1.22.0 allows attackers to trigger slightly incorrect copying by constructing specific string objects. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Numpy Communications Cloud Native Core Policy
NVD GitHub
EPSS 1% CVSS 5.3
MEDIUM POC PATCH This Month

A Buffer Overflow vulnerability exists in NumPy 1.9.x in the PyArray_NewFromDescr_int function of ctors.c when specifying arrays of large dimensions (over 32) from Python code, which could let a. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Buffer Overflow Python Denial Of Service +1
NVD GitHub
EPSS 17% CVSS 9.8
CRITICAL POC PATCH THREAT Act Now

An issue was discovered in NumPy before 1.16.3. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Python RCE Deserialization +2
NVD GitHub
EPSS 1% CVSS 7.5
HIGH POC PATCH This Week

The numpy.pad function in Numpy 1.13.1 and older versions is missing input validation. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Numpy
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy