Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Title:Python 2.7.x < 2.7.17, 3.5.x < 3.5.7, 3.6.x < 3.6.9, 3.7.x < 3.7.3 Information Disclosure Vulnerability (bpo-36216) - Mac OS X
Summary:Python is prone to an information disclosure vulnerability.
Python is prone to an information disclosure vulnerability.

Vulnerability Insight:
Python is affected by improper Handling of Unicode Encoding
(with an incorrect netloc) during NFKC normalization.

Vulnerability Impact:
Information disclosure (credentials, cookies, etc. that are
cached against a given hostname).

Affected Software/OS:
Python 2.7.x prior to version 2.7.17, versions 3.5.x prior to 3.5.7,
3.6.x prior to 3.6.9 and 3.7.x prior to 3.7.3.

The vendor has released updates. Please see the references for
more information.

CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2019-9636
BugTraq ID: 107400
RedHat Security Advisories: RHBA-2019:0763
RedHat Security Advisories: RHBA-2019:0764
RedHat Security Advisories: RHBA-2019:0959
RedHat Security Advisories: RHSA-2019:0710
RedHat Security Advisories: RHSA-2019:0765
RedHat Security Advisories: RHSA-2019:0806
RedHat Security Advisories: RHSA-2019:0902
RedHat Security Advisories: RHSA-2019:0981
RedHat Security Advisories: RHSA-2019:0997
RedHat Security Advisories: RHSA-2019:1467
RedHat Security Advisories: RHSA-2019:2980
RedHat Security Advisories: RHSA-2019:3170
SuSE Security Announcement: openSUSE-SU-2019:1273 (Google Search)
SuSE Security Announcement: openSUSE-SU-2019:1282 (Google Search)
SuSE Security Announcement: openSUSE-SU-2019:1371 (Google Search)
SuSE Security Announcement: openSUSE-SU-2019:1580 (Google Search)
SuSE Security Announcement: openSUSE-SU-2019:1906 (Google Search)
SuSE Security Announcement: openSUSE-SU-2020:0086 (Google Search)
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2022 E-Soft Inc. All rights reserved.