CVE-2024-47532
- EPSS 0.78%
- Veröffentlicht 30.09.2024 16:15:09
- Zuletzt bearbeitet 15.11.2024 17:59:51
RestrictedPython is a restricted execution environment for Python to run untrusted code. A user can gain access to protected (and potentially sensible) information indirectly via AttributeError.obj and the string module. The problem will be fixed in ...
CVE-2023-41039
- EPSS 0.08%
- Veröffentlicht 30.08.2023 18:15:09
- Zuletzt bearbeitet 21.11.2024 08:20:26
RestrictedPython is a restricted execution environment for Python to run untrusted code. Python's "format" functionality allows someone controlling the format string to "read" all objects accessible through recursive attribute lookup and subscription...
CVE-2023-37271
- EPSS 0.23%
- Veröffentlicht 11.07.2023 18:15:20
- Zuletzt bearbeitet 21.11.2024 08:11:21
RestrictedPython is a tool that helps to define a subset of the Python language which allows users to provide a program input into a trusted environment. RestrictedPython does not check access to stack frames and their attributes. Stack frames are ac...