CVSS: 7.9EPSS: 0%CPEs: 1EXPL: 0CVE-2025-22153 – try/except* clauses could allow bypass RestrictedPython via type confusion bug in the CPython interpreter
https://notcve.org/view.php?id=CVE-2025-22153
23 Jan 2025 — RestrictedPython is a tool that helps to define a subset of the Python language which allows to provide a program input into a trusted environment. Via a type confusion bug in versions of the CPython interpreter starting in 3.11 and prior to 3.13.2 when using `try/except*`, RestrictedPython starting in version 6.0 and prior to version 8.0 could be bypassed. The issue is patched in version 8.0 of RestrictedPython by removing support for `try/except*` clauses. No known workarounds are available. Nakul Choudha... • https://github.com/zopefoundation/RestrictedPython/commit/48a92c5bb617a647cffd0dadd4d5cfe626bcdb2f • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 8.7EPSS: 0%CPEs: 2EXPL: 0CVE-2024-51734 – User data deletion by anoynmous users in Zope
https://notcve.org/view.php?id=CVE-2024-51734
04 Nov 2024 — Zope AccessControl provides a general security framework for use in Zope. In affected versions anonymous users can delete the user data maintained by an `AccessControl.userfolder.UserFolder` which may prevent any privileged access. This problem has been fixed in version 7.2. Users are advised to upgrade. Users unable to upgrade may address the issue by adding `data__roles__ = ()` to `AccessControl.userfolder.UserFolder`. • https://github.com/zopefoundation/AccessControl/issues/159 • CWE-284: Improper Access Control •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-47532 – RestrictedPython information leakage via `AttributeError.obj` and the `string` module
https://notcve.org/view.php?id=CVE-2024-47532
30 Sep 2024 — RestrictedPython is a restricted execution environment for Python to run untrusted code. A user can gain access to protected (and potentially sensible) information indirectly via AttributeError.obj and the string module. The problem will be fixed in version 7.3. As a workaround, If the application does not require access to the module string, it can remove it from RestrictedPython.Utilities.utility_builtins or otherwise do not make it available in the restricted execution environment. Nakul Choudhary and Ro... • https://github.com/zopefoundation/RestrictedPython/commit/d701cc36cccac36b21fa200f1f2d1945a9a215e6 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •