scalyr-agent-2
PyPI2 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting scalyr-agent-2page 1 of 1
- CVE-2020-24714CRITICALCVSS 9.8EG 9.8✓ Fixed in 2.1.102020-08-27
vulnerable: 2.0.0.alpha.11 ... 2.1.9 (45 versions)
The Scalyr Agent before 2.1.10 has Missing SSL Certificate Validation because, in some circumstances, the openssl binary is called without the -verify_hostname option.
- CVE-2020-24715CRITICALCVSS 9.8EG 9.8✓ Fixed in 2.1.102020-08-27
vulnerable: 2.0.0.alpha.11 ... 2.1.9 (45 versions)
The Scalyr Agent before 2.1.10 has Missing SSL Certificate Validation because, in some circumstances, native Python code is used that lacks a comparison of the hostname to commonName and subjectAltName.
Check whether scalyr-agent-2 is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for scalyr-agent-2 CVEs against the assets you own.
Start Free Scan →