{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-02T13:25:01.607","vulnerabilities":[{"cve":{"id":"CVE-2024-6923","sourceIdentifier":"cna@python.org","published":"2024-08-01T14:15:03.647","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"There is a MEDIUM severity vulnerability affecting CPython.\n\nThe \nemail module didn’t properly quote newlines for email headers when \nserializing an email message allowing for header injection when an email\n is serialized."},{"lang":"es","value":"Existe una vulnerabilidad de gravedad MEDIA que afecta a CPython. El módulo de correo electrónico no citaba correctamente las nuevas líneas para los encabezados de correo electrónico al serializar un mensaje de correo electrónico, lo que permitía la inyección de encabezado cuando se serializa un correo electrónico."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.1,"impactScore":3.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-94"}]}],"references":[{"url":"https://github.com/python/cpython/commit/06f28dc236708f72871c64d4bc4b4ea144c50147","source":"cna@python.org"},{"url":"https://github.com/python/cpython/commit/097633981879b3c9de9a1dd120d3aa585ecc2384","source":"cna@python.org"},{"url":"https://github.com/python/cpython/commit/4766d1200fdf8b6728137aa2927a297e224d5fa7","source":"cna@python.org"},{"url":"https://github.com/python/cpython/commit/4aaa4259b5a6e664b7316a4d60bdec7ee0f124d0","source":"cna@python.org"},{"url":"https://github.com/python/cpython/commit/b158a76ce094897c870fb6b3de62887b7ccc33f1","source":"cna@python.org"},{"url":"https://github.com/python/cpython/commit/f7be505d137a22528cb0fc004422c0081d5d90e6","source":"cna@python.org"},{"url":"https://github.com/python/cpython/commit/f7c0f09e69e950cf3c5ada9dbde93898eb975533","source":"cna@python.org"},{"url":"https://github.com/python/cpython/issues/121650","source":"cna@python.org"},{"url":"https://github.com/python/cpython/pull/122233","source":"cna@python.org"},{"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/QH3BUOE2DYQBWP7NAQ7UNHPPOELKISRW/","source":"cna@python.org"},{"url":"http://www.openwall.com/lists/oss-security/2024/08/01/3","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2024/08/02/2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2024/12/msg00000.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2025/01/msg00005.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20240926-0003/","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}