Home > Vulnerability Database > CVE-2019-17626

Mend.io Vulnerability Database

CVE-2019-17626

Good to know:

Date: October 16, 2019

ReportLab through 3.5.26 allows remote code execution because of toColor(eval(arg)) in colors.py, as demonstrated by a crafted XML document with '<span color="' followed by arbitrary Python code.

Language: Python

Severity Score

9.8

Related Resources (30)

Url: https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZZPHP2BJSTP4IYCSJRQINP763IHO6ASL

Url: https://access.redhat.com/errata/RHSA-2020:0195

Url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZZPHP2BJSTP4IYCSJRQINP763IHO6ASL/

Url: https://access.redhat.com/errata/RHSA-2020:0197

Url: https://access.redhat.com/errata/RHSA-2020:0230

Url: https://bitbucket.org/rptlab/reportlab/src/default/CHANGES.md

Url: https://hg.reportlab.com/hg-public/reportlab/rev/51a521ad7dd3

Url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NSCTOE3DITFICY2XKBYZ5WAF5TSQ52DM

Url: http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00002.html

Url: https://bitbucket.org/rptlab/reportlab/issues/199/eval-in-colorspy-leads-to-remote-code

Url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NSCTOE3DITFICY2XKBYZ5WAF5TSQ52DM/

Url: https://usn.ubuntu.com/4273-1

Url: https://security.gentoo.org/glsa/202007-35

Url: https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NSCTOE3DITFICY2XKBYZ5WAF5TSQ52DM

Url: https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NSCTOE3DITFICY2XKBYZ5WAF5TSQ52DM/

Url: https://security.netapp.com/advisory/ntap-20240719-0006

Url: https://github.com/pypa/advisory-database/tree/main/vulns/reportlab/PYSEC-2019-117.yaml

Url: https://access.redhat.com/errata/RHSA-2020:0201

Url: https://access.redhat.com/security/cve/CVE-2019-17626

Url: https://github.com/MrBitBucket/reportlab-mirror

Url: https://nvd.nist.gov/vuln/detail/CVE-2019-17626

Url: https://www.debian.org/security/2020/dsa-4663

Url: https://usn.ubuntu.com/4273-1/

Url: https://lists.debian.org/debian-lts-announce/2020/02/msg00019.html

Url: https://web.archive.org/web/20191016111823/https://bitbucket.org/rptlab/reportlab/issues/199/eval-in-colorspy-leads-to-remote-code

Url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZZPHP2BJSTP4IYCSJRQINP763IHO6ASL

Url: https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZZPHP2BJSTP4IYCSJRQINP763IHO6ASL/

Url: https://security.netapp.com/advisory/ntap-20240719-0006/

Url: https://github.com/advisories/GHSA-qpg2-vx7j-3869

Url: https://www.mend.io/vulnerability-database/CVE-2019-17626

Severity Score

9.8

Weakness Type (CWE)

XML Injection (aka Blind XPath Injection)

CWE-91

Top Fix

Upgrade Version

Upgrade to version reportlab - 3.5.28

Learn More

CVSS v3.1

Base Score:	9.8
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

CVSS v2

Base Score:	7.5
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	PARTIAL
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2019-17626

Good to know:

Date: October 16, 2019

Language: Python

Severity Score

Related Resources (30)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

CVSS v2

Do you need more information?