CVE-2021-3177

critical
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Python 3.x through 3.9.1 has a buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution in certain Python applications that accept floating-point numbers as untrusted input, as demonstrated by a 1e300 argument to c_double.from_param. This occurs because sprintf is used unsafely.

References

https://bugs.python.org/issue42938

https://github.com/python/cpython/pull/24239

https://python-security.readthedocs.io/vuln/ctypes-buffer-overflow-pycarg_repr.html

https://lists.fedoraproject.org/archives/list/[email protected]/message/NQPARTLNSFQVMMQHPNBFOCOZOO3TMQNA/

https://lists.fedoraproject.org/archives/list/[email protected]/message/MGSV6BJQLRQ6RKVUXK7JGU7TP4QFGQXC/

https://security.gentoo.org/glsa/202101-18

https://lists.fedoraproject.org/archives/list/[email protected]/message/Z7GZV74KM72O2PEJN2C4XP3V5Q5MZUOO/

https://lists.fedoraproject.org/archives/list/[email protected]/message/CCFZMVRQUKCBQIG5F2CBVADK63NFSE4A/

https://lists.fedoraproject.org/archives/list/[email protected]/message/BRHOCQYX3QLDGDQGTWQAUUT2GGIZCZUO/

https://lists.fedoraproject.org/archives/list/[email protected]/message/V6XJAULOS5JVB2L67NCKKMJ5NTKZJBSD/

https://lists.fedoraproject.org/archives/list/[email protected]/message/NXSMBHES3ANXXS2RSO5G6Q24BR4B2PWK/

https://lists.fedoraproject.org/archives/list/package-announce[email protected]/message/YDTZVGSXQ7HR7OCGSUHTRNTMBG43OMKU/

https://lists.fedoraproject.org/archives/list/[email protected]/message/Y4KSYYWMGAKOA2JVCQA422OINT6CKQ7O/

https://lists.fedoraproject.org/archives/list/[email protected]/message/FPE7SMXYUIWPOIZV4DQYXODRXMFX3C5E/

https://news.ycombinator.com/item?id=26185005

https://lists.fedoraproject.org/archives/list/[email protected]/message/HCQTCSP6SCVIYNIRUJC5X7YBVUHPLSC4/

https://lists.fedoraproject.org/archives/list/[email protected]/message/NODWHDIFBQE5RU5PUWUVE47JOT5VCMJ2/

https://lists.fedoraproject.org/archives/list/[email protected]/message/MP572OLHMS7MZO4KUPSCIMSZIA5IZZ62/

https://lists.apache.org/thread.html/[email protected]%3Cdev.mina.apache.org%3E

https://lists.fedoraproject.org/archives/list/[email protected]/message/FONHJIOZOFD7CD35KZL6SVBUTMBPGZGA/

https://security.netapp.com/advisory/ntap-20210226-0003/

https://lists.debian.org/debian-lts-announce/2021/04/msg00005.html

Details

Source: MITRE

Published: 2021-01-19

Updated: 2021-07-20

Type: CWE-120

Risk Information

CVSS v2

Base Score: 7.5

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 10

Severity: HIGH

CVSS v3

Base Score: 9.8

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 3.9

Severity: CRITICAL

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:python:python:*:*:*:*:*:*:*:* versions from 3.6.0 to 3.6.12 (inclusive)

cpe:2.3:a:python:python:*:*:*:*:*:*:*:* versions from 3.7.0 to 3.7.9 (inclusive)

cpe:2.3:a:python:python:*:*:*:*:*:*:*:* versions from 3.8.0 to 3.8.7 (inclusive)

cpe:2.3:a:python:python:*:*:*:*:*:*:*:* versions from 3.9.0 to 3.9.1 (inclusive)

Configuration 2

OR

cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*

Configuration 3

OR

cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*

Tenable Plugins

View all (54 total)

IDNameProductFamilySeverity
151340EulerOS Virtualization for ARM 64 3.0.2.0 : python (EulerOS-SA-2021-2096)NessusHuawei Local Security Checks
critical
151221EulerOS Virtualization 3.0.6.6 : python (EulerOS-SA-2021-2028)NessusHuawei Local Security Checks
critical
151178EulerOS Virtualization for ARM 64 3.0.6.0 : python3 (EulerOS-SA-2021-2007)NessusHuawei Local Security Checks
critical
150207EulerOS 2.0 SP9 : python3 (EulerOS-SA-2021-1957)NessusHuawei Local Security Checks
critical
150184EulerOS 2.0 SP9 : python3 (EulerOS-SA-2021-1936)NessusHuawei Local Security Checks
critical
150032CentOS 8 : python38:3.8 (CESA-2021:1879)NessusCentOS Local Security Checks
critical
149959Oracle Linux 8 : python3 (ELSA-2021-1633)NessusOracle Linux Local Security Checks
critical
149749CentOS 8 : python27:2.7 (CESA-2021:1761)NessusCentOS Local Security Checks
critical
149729CentOS 8 : python3 (CESA-2021:1633)NessusCentOS Local Security Checks
critical
149712RHEL 8 : python3 (RHSA-2021:1633)NessusRed Hat Local Security Checks
critical
149710RHEL 8 : python27:2.7 (RHSA-2021:1761)NessusRed Hat Local Security Checks
critical
149708RHEL 8 : python38:3.8 (RHSA-2021:1879)NessusRed Hat Local Security Checks
critical
149608EulerOS 2.0 SP5 : python (EulerOS-SA-2021-1911)NessusHuawei Local Security Checks
critical
149544EulerOS 2.0 SP8 : python3 (EulerOS-SA-2021-1886)NessusHuawei Local Security Checks
critical
149188EulerOS 2.0 SP3 : python (EulerOS-SA-2021-1835)NessusHuawei Local Security Checks
critical
148596EulerOS Virtualization 2.9.1 : python3 (EulerOS-SA-2021-1722)NessusHuawei Local Security Checks
critical
148579EulerOS Virtualization 2.9.0 : python3 (EulerOS-SA-2021-1747)NessusHuawei Local Security Checks
critical
148348Photon OS 4.0: Python3 PHSA-2021-4.0-0007NessusPhotonOS Local Security Checks
critical
148322Debian DLA-2619-1 : python3.5 security updateNessusDebian Local Security Checks
critical
148008Ubuntu 18.04 LTS / 20.04 LTS : Python vulnerabilities (USN-4754-3)NessusUbuntu Local Security Checks
critical
147997Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 20.10 : Python vulnerabilities (USN-4754-1)NessusUbuntu Local Security Checks
critical
147995Ubuntu 16.04 LTS / 18.04 LTS : Python 2.7 vulnerability (USN-4754-4)NessusUbuntu Local Security Checks
critical
147967Oracle Linux 8 : python38 (ELSA-2021-9130)NessusOracle Linux Local Security Checks
critical
147966Oracle Linux 8 : python2 (ELSA-2021-9128)NessusOracle Linux Local Security Checks
critical
147965Oracle Linux 8 : python36 (ELSA-2021-9129)NessusOracle Linux Local Security Checks
critical
147811Oracle Linux 7 : python (ELSA-2021-9107)NessusOracle Linux Local Security Checks
critical
147642Oracle Linux 8 : python3 (ELSA-2021-9100)NessusOracle Linux Local Security Checks
critical
147621Oracle Linux 7 : python3 (ELSA-2021-9101)NessusOracle Linux Local Security Checks
critical
146886Fedora 32 : python37 (2021-907f3bacae)NessusFedora Local Security Checks
critical
146851openSUSE Security Update : python3 (openSUSE-2021-331)NessusSuSE Local Security Checks
critical
146841Fedora 32 : python36 (2021-3352c1c802)NessusFedora Local Security Checks
critical
146819Amazon Linux AMI : python27, python36, python38 (ALAS-2021-1484)NessusAmazon Linux Local Security Checks
critical
146749Fedora 33 : python3.7 (2021-f4fd9372c7)NessusFedora Local Security Checks
critical
146737Fedora 33 : python3.6 (2021-7547ad987f)NessusFedora Local Security Checks
critical
146729SUSE SLED15 / SLES15 Security Update : python3 (SUSE-SU-2021:0529-1)NessusSuSE Local Security Checks
critical
146622Amazon Linux 2 : python, python3 (ALAS-2021-1611)NessusAmazon Linux Local Security Checks
critical
146518openSUSE Security Update : python (openSUSE-2021-270)NessusSuSE Local Security Checks
critical
146515Fedora 32 : python3.10 (2021-d5cde50865)NessusFedora Local Security Checks
critical
146484Photon OS 2.0: Python3 PHSA-2021-2.0-0317NessusPhotonOS Local Security Checks
critical
146463SUSE SLES12 Security Update : python (SUSE-SU-2021:0432-1)NessusSuSE Local Security Checks
critical
146440Photon OS 3.0: Python3 PHSA-2021-3.0-0192NessusPhotonOS Local Security Checks
critical
146412Fedora 32 : python27 (2021-17668e344a)NessusFedora Local Security Checks
critical
146400Fedora 33 : python2.7 (2021-66547ff92d)NessusFedora Local Security Checks
critical
146395SUSE SLES12 Security Update : python36 (SUSE-SU-2021:0428-1)NessusSuSE Local Security Checks
critical
146367SUSE SLED15 / SLES15 Security Update : python (SUSE-SU-2021:0355-1)NessusSuSE Local Security Checks
critical
146296Fedora 32 : python3 (2021-076a2dccba)NessusFedora Local Security Checks
critical
146292Fedora 33 : python3.10 (2021-851c6e4e2d)NessusFedora Local Security Checks
critical
145760Fedora 32 : mingw-python3 (2021-42ba9feb47)NessusFedora Local Security Checks
critical
145751Fedora 33 : mingw-python3 (2021-ced31f3f0c)NessusFedora Local Security Checks
critical
145562Fedora 32 : python39 (2021-e3a5a74610)NessusFedora Local Security Checks
critical
145534Python Buffer Overflow (CVE-2021-3177)NessusWindows
critical
145318Fedora 33 : python3.9 (2021-faf88b9499)NessusFedora Local Security Checks
critical
145303GLSA-202101-18 : Python: Multiple vulnerabilitiesNessusGentoo Local Security Checks
critical
145281Fedora 33 : python3.8 (2021-cc3ff94cfc)NessusFedora Local Security Checks
critical