pywbem
PyPI2 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting pywbempage 1 of 1
- CVE-2013-6418NONECVSS 0.0EG 0.0✓ Fixed in 0.8.12014-05-05
vulnerable: 0.7.0
PyWBEM 0.7 and earlier uses a separate connection to validate X.509 certificates, which allows man-in-the-middle attackers to spoof a peer via an arbitrary certificate.
- CVE-2013-6444NONECVSS 0.0EG 0.0✓ Fixed in 0.8.12014-05-05
vulnerable: 0.7.0
PyWBEM 0.7 and earlier does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an …
Check whether pywbem is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for pywbem CVEs against the assets you own.
Start Free Scan →