CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-10799

The svglib package through 0.9.3 for Python allows XXE attacks via an svg2rlg call.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 55.9%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2020-10799

Svglib Project » Svglib » Version: 0.6.3

cpe:2.3:a:svglib_project:svglib:0.6.3
Svglib Project » Svglib » Version: 0.8.0

cpe:2.3:a:svglib_project:svglib:0.8.0
Svglib Project » Svglib » Version: 0.8.1

cpe:2.3:a:svglib_project:svglib:0.8.1
Svglib Project » Svglib » Version: 0.9.0

cpe:2.3:a:svglib_project:svglib:0.9.0
Svglib Project » Svglib » Version: 0.9.1

cpe:2.3:a:svglib_project:svglib:0.9.1
Svglib Project » Svglib » Version: 0.9.2

cpe:2.3:a:svglib_project:svglib:0.9.2
Svglib Project » Svglib » Version: 0.9.3

cpe:2.3:a:svglib_project:svglib:0.9.3

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved