vulnerability
Amazon Linux AMI: CVE-2021-42771: Security patch for python-babel (ALAS-2023-1720)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | 10/20/2021 | 04/06/2023 | 04/06/2023 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
10/20/2021
Added
04/06/2023
Modified
04/06/2023
Description
Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files (containing serialized Python objects) via directory traversal, leading to code execution.
Solution
amazon-linux-upgrade-python-babel
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.