Package impact
Maven / org.python:jython-standalone
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2016-4000 | critical | 9.8 | 9.8 | 9y ago | Jython before 2.7.1rc1 allows attackers to execute arbitrary code via a crafted serialized PyFunction object. | |
| CVE-2013-2027 | medium | — | 4.6 | 11y ago | Jython 2.2.1 uses the current umask to set the privileges of the class cache files, which allows local users to bypass intended access restrictions via unspecified vectors. |