Aller au contenu
appaloosa scout logo main rounded
HIGH 7.5

CVE-2020-10735

EN A flaw was found in python. In algorithms with quadratic time complexity using non-binary bases, when using int("text"), a system could take 50ms to parse an int string with 100,000 digits and 5s for 1,000,000 digits (float, decimal, int.from_bytes(), and int() for binary bases 2, 4, 8, 16, and 32 are not affected). The highest threat from this vulnerability is to system availability.

CVSS v3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS 0.4% percentile 59.8%

Apps suivies affectées

Python
winget:Python.Python.3.12
1 ouverte

Configurations CPE vulnérables

Vendor Produit Plateforme Versions CPE 2.3 URI
python python Windows ≥3.7.0 <3.7.14 cpe:2.3:a:python:python:*:*:*:*:*:*:*:*
python python Windows ≥3.8.0 <3.8.14 cpe:2.3:a:python:python:*:*:*:*:*:*:*:*
python python Windows ≥3.9.0 <3.9.14 cpe:2.3:a:python:python:*:*:*:*:*:*:*:*
python python Windows ≥3.10.0 <3.10.7 cpe:2.3:a:python:python:*:*:*:*:*:*:*:*
python python Windows cpe:2.3:a:python:python:3.11.0:alpha1:*:*:*:*:*:*
python python Windows cpe:2.3:a:python:python:3.11.0:alpha2:*:*:*:*:*:*
python python Windows cpe:2.3:a:python:python:3.11.0:alpha3:*:*:*:*:*:*
python python Windows cpe:2.3:a:python:python:3.11.0:alpha4:*:*:*:*:*:*
python python Windows cpe:2.3:a:python:python:3.11.0:alpha5:*:*:*:*:*:*
python python Windows cpe:2.3:a:python:python:3.11.0:alpha6:*:*:*:*:*:*
python python Windows cpe:2.3:a:python:python:3.11.0:alpha7:*:*:*:*:*:*
python python Windows cpe:2.3:a:python:python:3.11.0:beta1:*:*:*:*:*:*
python python Windows cpe:2.3:a:python:python:3.11.0:beta2:*:*:*:*:*:*
python python Windows cpe:2.3:a:python:python:3.11.0:beta3:*:*:*:*:*:*
python python Windows cpe:2.3:a:python:python:3.11.0:beta4:*:*:*:*:*:*
python python Windows cpe:2.3:a:python:python:3.11.0:beta5:*:*:*:*:*:*
python python Windows cpe:2.3:a:python:python:3.11.0:rc1:*:*:*:*:*:*
Voir sur NVD ↗