Vulnerability Database
289,599
Total vulnerabilities in the database
CVE-2021-3572
A flaw was found in python-pip in the way it handled Unicode separators in git references. A remote attacker could possibly use this issue to install a different revision on a repository. The highest threat from this vulnerability is to data integrity. This is fixed in python-pip version 21.1.
| Software | From | Fixed in |
|---|---|---|
| pypa / pip | - | 21.1 |
| oracle / agile_plm | 9.3.6 | 9.3.6.x |
| oracle / communications_cloud_native_core_policy | 1.15.0 | 1.15.0.x |
| oracle / communications_cloud_native_core_network_function_cloud_native_environment | 22.1.0 | 22.1.0.x |
| oracle / communications_cloud_native_core_network_function_cloud_native_environment | 1.10.0 | 1.10.0.x |
| oracle / communications_cloud_native_core_policy | 22.1.3 | 22.1.3.x |
pip
|
- | 21.1 |
- https://access.redhat.com/errata/RHSA-2021:3254
- https://bugzilla.redhat.com/show_bug.cgi?id=1962856
- https://github.com/pypa/pip/commit/e46bdda9711392fec0c45c1175bae6db847cb30b
- https://github.com/pypa/pip/pull/9827
- https://packetstormsecurity.com/files/162712/USN-4961-1.txt
- https://security.netapp.com/advisory/ntap-20240621-0006/
- https://www.oracle.com/security-alerts/cpuapr2022.html
- https://www.oracle.com/security-alerts/cpujul2022.html