PT-2019-5897 · Python+4 · Python+4

Published

2019-10-23

·

Updated

2024-07-11

·

CVE-2019-18348

CVSS v3.1

6.1

Medium

VectorAV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Name of the Vulnerable Software and Affected Versions Python (affected versions not specified)
Description The issue is related to a CRLF injection vulnerability in the urllib2 module of the Python programming language. This could allow a remote attacker to impact data integrity.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Special Elements Injection

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-74

Related Identifiers

ALT-PU-2020-1914
ALT-PU-2020-2220
ALT-PU-2020-3318
ALT-PU-2020-3323
ALT-PU-2021-2653
ALT-PU-2024-3474
BDU:2021-03715
CVE-2019-18348
DLA-2280-1
OPENSUSE-SU-2020:0696-1
OPENSUSE-SU-2020:2332-1
OPENSUSE-SU-2020:2333-1
OPENSUSE-SU-2020_0696-1
OPENSUSE-SU-2020_2332-1
OPENSUSE-SU-2020_2333-1
OPENSUSE-SU-2022_4281-1
OPENSUSE-SU-2024:11202-1
OPENSUSE-SU-2024:11284-1
PSF-2019-7
RHSA-2020:4273
RHSA-2020:4285
SUSE-SU-2020:0750-1
SUSE-SU-2020:0854-1
SUSE-SU-2020:1339-1
SUSE-SU-2020:1524-1
SUSE-SU-2020:3865-1
SUSE-SU-2020:3930-1
SUSE-SU-2020_0750-1
SUSE-SU-2020_0854-1
SUSE-SU-2020_1339-1
SUSE-SU-2020_1524-1
SUSE-SU-2020_3865-1
SUSE-SU-2021:0794-1
SUSE-SU-2021_0794-1
SUSE-SU-2022:4281-1
SUSE-SU-2022_4281-1
USN-4333-1
USN-4333-2
USN-6891-1

Affected Products

Alt Linux
Linuxmint
Python
Suse
Ubuntu