vulnerability
CentOS Linux: CVE-2019-7164: Important: python27:2.7 security update (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:P/I:P/A:P) | Feb 20, 2019 | Aug 28, 2019 | May 25, 2023 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
Feb 20, 2019
Added
Aug 28, 2019
Modified
May 25, 2023
Description
SQLAlchemy through 1.2.17 and 1.3.x through 1.3.0b2 allows SQL Injection via the order_by parameter.
Solution(s)
centos-upgrade-babelcentos-upgrade-python-nose-docscentos-upgrade-python-psycopg2-doccentos-upgrade-python-pymongo-doccentos-upgrade-python-sqlalchemy-doccentos-upgrade-python-virtualenv-doccentos-upgrade-python2centos-upgrade-python2-attrscentos-upgrade-python2-babelcentos-upgrade-python2-backportscentos-upgrade-python2-backports-ssl_match_hostnamecentos-upgrade-python2-bsoncentos-upgrade-python2-bson-debuginfocentos-upgrade-python2-chardetcentos-upgrade-python2-coveragecentos-upgrade-python2-coverage-debuginfocentos-upgrade-python2-cythoncentos-upgrade-python2-cython-debuginfocentos-upgrade-python2-debugcentos-upgrade-python2-debuginfocentos-upgrade-python2-debugsourcecentos-upgrade-python2-develcentos-upgrade-python2-dnscentos-upgrade-python2-docscentos-upgrade-python2-docs-infocentos-upgrade-python2-docutilscentos-upgrade-python2-funcsigscentos-upgrade-python2-idnacentos-upgrade-python2-ipaddresscentos-upgrade-python2-jinja2centos-upgrade-python2-libscentos-upgrade-python2-lxmlcentos-upgrade-python2-lxml-debuginfocentos-upgrade-python2-markupsafecentos-upgrade-python2-mockcentos-upgrade-python2-nosecentos-upgrade-python2-numpycentos-upgrade-python2-numpy-debuginfocentos-upgrade-python2-numpy-doccentos-upgrade-python2-numpy-f2pycentos-upgrade-python2-pipcentos-upgrade-python2-pluggycentos-upgrade-python2-psycopg2centos-upgrade-python2-psycopg2-debugcentos-upgrade-python2-psycopg2-debug-debuginfocentos-upgrade-python2-psycopg2-debuginfocentos-upgrade-python2-psycopg2-testscentos-upgrade-python2-pycentos-upgrade-python2-pygmentscentos-upgrade-python2-pymongocentos-upgrade-python2-pymongo-debuginfocentos-upgrade-python2-pymongo-gridfscentos-upgrade-python2-pymysqlcentos-upgrade-python2-pysockscentos-upgrade-python2-pytestcentos-upgrade-python2-pytest-mockcentos-upgrade-python2-pytzcentos-upgrade-python2-pyyamlcentos-upgrade-python2-pyyaml-debuginfocentos-upgrade-python2-requestscentos-upgrade-python2-rpm-macroscentos-upgrade-python2-scipycentos-upgrade-python2-scipy-debuginfocentos-upgrade-python2-setuptoolscentos-upgrade-python2-setuptools_scmcentos-upgrade-python2-sixcentos-upgrade-python2-sqlalchemycentos-upgrade-python2-testcentos-upgrade-python2-tkintercentos-upgrade-python2-toolscentos-upgrade-python2-urllib3centos-upgrade-python2-virtualenvcentos-upgrade-python2-wheelcentos-upgrade-python3-bsoncentos-upgrade-python3-bson-debuginfocentos-upgrade-python3-docscentos-upgrade-python3-docutilscentos-upgrade-python3-nosecentos-upgrade-python3-pygmentscentos-upgrade-python3-pymongocentos-upgrade-python3-pymongo-debuginfocentos-upgrade-python3-pymongo-gridfscentos-upgrade-python3-pymysqlcentos-upgrade-python3-scipycentos-upgrade-python3-scipy-debuginfocentos-upgrade-python3-sqlalchemycentos-upgrade-python3-virtualenvcentos-upgrade-python3-wheelcentos-upgrade-python36centos-upgrade-python36-debugcentos-upgrade-python36-develcentos-upgrade-python36-rpm-macros
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.