vulnerability

Alma Linux: CVE-2024-36039: Moderate: python3.11-PyMySQL security update (Multiple Advisories)

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:L/Au:S/C:P/I:P/A:P)	2024-05-21	2024-07-04	2025-02-18

Severity

CVSS

(AV:N/AC:L/Au:S/C:P/I:P/A:P)

Published

2024-05-21

Added

2024-07-04

Modified

2025-02-18

Description

PyMySQL through 1.1.0 allows SQL injection if used with untrusted JSON input because keys are not escaped by escape_dict.

alma-upgrade-python3.11-pymysqlalma-upgrade-python3.11-pymysql+rsaalma-upgrade-python3.12-pymysqlalma-upgrade-python3.12-pymysql+rsa

NEW

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.