CVE-2013-4409
An eval() vulnerability exists in Python Software Foundation Djblets 0.7.21 and Beanbag Review Board before 1.7.15 when parsing JSON requests.
| Software | From | Fixed in |
|---|---|---|
| reviewboard / review_board | - | 1.7.15 |
| reviewboard / djblets | 0.7.21 | 0.7.21.x |
| fedoraproject / fedora | 18 | 18.x |
| fedoraproject / fedora | 20 | 20.x |
| fedoraproject / fedora | 19 | 19.x |
| redhat / enterprise_linux | 6.0 | 6.0.x |
- http://lists.fedoraproject.org/pipermail/package-announce/2013-November/120619.html
- http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119819.html
- http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119820.html
- http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119830.html
- http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119831.html
- http://www.securityfocus.com/bid/63029
- https://access.redhat.com/security/cve/cve-2013-4409
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4409
- https://exchange.xforce.ibmcloud.com/vulnerabilities/88059
- https://security-tracker.debian.org/tracker/CVE-2013-4409
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime