MSRC_CVE-2015-20107 — Vulnetix

MSRC_CVE-2015-20107 PUBLISHED CVSS 7.599999904632568 HIGH

Risk Scores

CVSS 3.1

7.599999904632568

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L

Affected Products

Vendor	Product	Versions
	<cm1 python3 3.7.13-4
	cm1 python2 2.7.18
	CBL Mariner 2.0
	cbl2 python3 3.9.13
	cm1 python3 3.7.13
	CBL Mariner 1.0
	<cm1 python2 2.7.18-11
	<cbl2 python3 3.9.13-5

Exploit Intelligence

Scan for python installations on macOS, and run CVE-2015-20107.py script to report if patching is needed (github-poc-repo)
Scan for python installations on macOS, and run CVE-2015-20107.py script to report if patching is needed (github-poc)
https://www.first.org/cvss (circl)
https://msrc.microsoft.com/csaf/vex/2022/msrc_cve-2015-20107.json (circl)
https://support.microsoft.com/lifecycle (circl)
https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade (circl)
data_v2.json (github-poc)

Timeline

Apr 2, 2022 CVE Published
Apr 22, 2022 CVE Updated
Mar 31, 2026 Security Advisory

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›