Skip to main content

Pyxdg

2 CVEs product

Monthly

CVE-2019-12761 PyPI HIGH POC PATCH This Week

A code injection issue was discovered in PyXDG before 0.26 via crafted Python code in a Category element of a Menu XML document in a .menu file. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Code Injection Python RCE Pyxdg
NVD GitHub
CVSS 3.0
7.5
EPSS
2.1%
CVE-2014-1624 PyPI LOW PATCH Monitor

Race condition in the xdg.BaseDirectory.get_runtime_dir function in python-xdg 0.25 allows local users to overwrite arbitrary files by pre-creating /tmp/pyxdg-runtime-dir-fallback-victim to point to. Rated low severity (CVSS 3.3).

Python Information Disclosure Pyxdg
NVD
CVSS 2.0
3.3
EPSS
0.0%
EPSS 2% CVSS 7.5
HIGH POC PATCH This Week

A code injection issue was discovered in PyXDG before 0.26 via crafted Python code in a Category element of a Menu XML document in a .menu file. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Code Injection Python RCE +1
NVD GitHub
EPSS 0% CVSS 3.3
LOW PATCH Monitor

Race condition in the xdg.BaseDirectory.get_runtime_dir function in python-xdg 0.25 allows local users to overwrite arbitrary files by pre-creating /tmp/pyxdg-runtime-dir-fallback-victim to point to. Rated low severity (CVSS 3.3).

Python Information Disclosure Pyxdg
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy