CVE-2019-9947

MEDIUM
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

An issue was discovered in urllib2 in Python 2.x through 2.7.16 and urllib in Python 3.x through 3.7.3. CRLF injection is possible if the attacker controls a url parameter, as demonstrated by the first argument to urllib.request.urlopen with \r\n (specifically in the path component of a URL that lacks a ? character) followed by an HTTP header or a Redis command. This is similar to the CVE-2019-9740 query string issue. This is fixed in: v2.7.17, v2.7.17rc1, v2.7.18, v2.7.18rc1; v3.5.10, v3.5.10rc1, v3.5.8, v3.5.8rc1, v3.5.8rc2, v3.5.9; v3.6.10, v3.6.10rc1, v3.6.11, v3.6.11rc1, v3.6.12, v3.6.9, v3.6.9rc1; v3.7.4, v3.7.4rc1, v3.7.4rc2, v3.7.5, v3.7.5rc1, v3.7.6, v3.7.6rc1, v3.7.7, v3.7.7rc1, v3.7.8, v3.7.8rc1, v3.7.9.

References

http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00062.html

http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00063.html

http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html

http://www.openwall.com/lists/oss-security/2021/02/04/2

https://access.redhat.com/errata/RHSA-2019:1260

https://access.redhat.com/errata/RHSA-2019:2030

https://access.redhat.com/errata/RHSA-2019:3335

https://access.redhat.com/errata/RHSA-2019:3520

https://access.redhat.com/errata/RHSA-2019:3725

https://bugs.python.org/issue35906

https://lists.debian.org/debian-lts-announce/2019/06/msg00022.html

https://lists.debian.org/debian-lts-announce/2019/06/msg00023.html

https://lists.debian.org/debian-lts-announce/2019/06/msg00026.html

https://lists.debian.org/debian-lts-announce/2020/07/msg00011.html

https://lists.debian.org/debian-lts-announce/2020/08/msg00034.html

https://lists.fedoraproject.org/archives/list/[email protected]/message/JMWSKTNOHSUOT3L25QFJAVCFYZX46FYK/

https://lists.fedoraproject.org/archives/list/[email protected]/message/JXASHCDD4PQFKTMKQN4YOP5ZH366ABN4/

https://security.gentoo.org/glsa/202003-26

https://security.netapp.com/advisory/ntap-20190404-0004/

https://usn.ubuntu.com/4127-1/

https://usn.ubuntu.com/4127-2/

Details

Source: MITRE

Published: 2019-03-23

Updated: 2021-02-04

Type: CWE-93

Risk Information

CVSS v2

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3

Base Score: 6.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Impact Score: 2.7

Exploitability Score: 2.8

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:python:python:*:*:*:*:*:*:*:* versions from 2.0 to 2.7.15 (inclusive)

cpe:2.3:a:python:python:2.7.16:-:*:*:*:*:*:*

cpe:2.3:a:python:python:*:*:*:*:*:*:*:* versions from 3.0.0 to 3.7.2 (inclusive)

Tenable Plugins

View all (45 total)

IDNameProductFamilySeverity
145658CentOS 8 : python3 (CESA-2019:3520)NessusCentOS Local Security Checks
critical
145618CentOS 8 : python27:2.7 (CESA-2019:3335)NessusCentOS Local Security Checks
critical
143782SUSE SLES12 Security Update : python3 (SUSE-SU-2020:2699-1)NessusSuSE Local Security Checks
high
140089Amazon Linux AMI : python34 (ALAS-2020-1429)NessusAmazon Linux Local Security Checks
medium
140087Amazon Linux AMI : python36 (ALAS-2020-1428)NessusAmazon Linux Local Security Checks
medium
139757Debian DLA-2337-1 : python2.7 security updateNessusDebian Local Security Checks
critical
138529Debian DLA-2280-1 : python3.5 security updateNessusDebian Local Security Checks
critical
135459RHEL 7 : python (RHSA-2020:1462)NessusRed Hat Local Security Checks
critical
135247RHEL 7 : python (RHSA-2020:1346)NessusRed Hat Local Security Checks
critical
135089RHEL 7 : python (RHSA-2020:1268)NessusRed Hat Local Security Checks
critical
134741EulerOS Virtualization 3.0.2.2 : python (EulerOS-SA-2020-1275)NessusHuawei Local Security Checks
high
134603GLSA-202003-26 : Python: Multiple vulnerabilitiesNessusGentoo Local Security Checks
critical
134501EulerOS Virtualization for ARM 64 3.0.2.0 : python (EulerOS-SA-2020-1212)NessusHuawei Local Security Checks
high
133448SUSE SLES12 Security Update : python36 (SUSE-SU-2020:0302-1)NessusSuSE Local Security Checks
critical
133259SUSE SLED15 / SLES15 Security Update : python (SUSE-SU-2020:0234-1) (BEAST) (httpoxy)NessusSuSE Local Security Checks
critical
133172openSUSE Security Update : python3 (openSUSE-2020-86) (BEAST) (httpoxy)NessusSuSE Local Security Checks
critical
133036SUSE SLED15 / SLES15 Security Update : python3 (SUSE-SU-2020:0114-1) (BEAST) (httpoxy)NessusSuSE Local Security Checks
critical
132508NewStart CGSL CORE 5.05 / MAIN 5.05 : python Multiple Vulnerabilities (NS-SA-2019-0229)NessusNewStart CGSL Local Security Checks
critical
132188EulerOS 2.0 SP3 : python (EulerOS-SA-2019-2653)NessusHuawei Local Security Checks
high
131244Amazon Linux AMI : python34 (ALAS-2019-1324)NessusAmazon Linux Local Security Checks
critical
130687EulerOS 2.0 SP5 : python (EulerOS-SA-2019-2225)NessusHuawei Local Security Checks
high
130548RHEL 8 : python3 (RHSA-2019:3520)NessusRed Hat Local Security Checks
critical
130527RHEL 8 : python27:2.7 (RHSA-2019:3335)NessusRed Hat Local Security Checks
critical
130339openSUSE Security Update : python (openSUSE-2019-2393)NessusSuSE Local Security Checks
high
130337openSUSE Security Update : python (openSUSE-2019-2389)NessusSuSE Local Security Checks
high
130164SUSE SLED15 / SLES15 Security Update : python (SUSE-SU-2019:2743-1)NessusSuSE Local Security Checks
high
129884NewStart CGSL CORE 5.04 / MAIN 5.04 : python Multiple Vulnerabilities (NS-SA-2019-0187)NessusNewStart CGSL Local Security Checks
critical
128631Ubuntu 16.04 LTS / 18.04 LTS / 19.04 : python2.7, python3.5, python3.6, python3.7 vulnerabilities (USN-4127-1)NessusUbuntu Local Security Checks
critical
128333CentOS 7 : python (CESA-2019:2030)NessusCentOS Local Security Checks
critical
128254Scientific Linux Security Update : python on SL7.x x86_64 (20190806)NessusScientific Linux Local Security Checks
critical
127651RHEL 7 : python (RHSA-2019:2030)NessusRed Hat Local Security Checks
critical
127071Amazon Linux AMI : python35 (ALAS-2019-1243)NessusAmazon Linux Local Security Checks
critical
127070Amazon Linux AMI : python34 (ALAS-2019-1242)NessusAmazon Linux Local Security Checks
medium
126959Amazon Linux 2 : python3 (ALAS-2019-1247)NessusAmazon Linux Local Security Checks
medium
126686SUSE SLED15 / SLES15 Security Update : python3 (SUSE-SU-2019:1352-2)NessusSuSE Local Security Checks
medium
126346Amazon Linux AMI : python27 (ALAS-2019-1230)NessusAmazon Linux Local Security Checks
critical
126285EulerOS 2.0 SP8 : python3 (EulerOS-SA-2019-1658)NessusHuawei Local Security Checks
medium
126223Debian DLA-1835-2 : python3.4 regression updateNessusDebian Local Security Checks
medium
126222Debian DLA-1834-1 : python2.7 security updateNessusDebian Local Security Checks
critical
126201Photon OS 1.0: Python3 PHSA-2019-1.0-0237NessusPhotonOS Local Security Checks
high
126123Photon OS 1.0: Python2 PHSA-2019-1.0-0236NessusPhotonOS Local Security Checks
high
125604Amazon Linux AMI : python36 (ALAS-2019-1204)NessusAmazon Linux Local Security Checks
critical
125466SUSE SLED15 / SLES15 Security Update : python3 (SUSE-SU-2019:1352-1)NessusSuSE Local Security Checks
medium
125434Fedora 29 : python3 (2019-ec26883852)NessusFedora Local Security Checks
critical
125229Fedora 30 : python3 (2019-1ffd6b6064)NessusFedora Local Security Checks
critical