Msrc Azl3 Python-Pip 24.2-4 On Azure Linux 3.0 vulnerabilities
2 known vulnerabilities affecting msrc/azl3_python-pip_24.2-4_on_azure_linux_3.0.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2025-8869MEDIUMCVSS 5.92025-09-09
CVE-2025-8869 [MEDIUM] Fallback tar extraction in pip doesn't check symbolic links point to extraction directory
Fallback tar extraction in pip doesn't check symbolic links point to extraction directory
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and m
msrc
CVE-2025-50181MEDIUMCVSS 5.32025-06-10
CVE-2025-50181 [MEDIUM] CWE-601 urllib3 redirects are not disabled when retries are disabled on PoolManager instantiation
urllib3 redirects are not disabled when retries are disabled on PoolManager instantiation
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most rec
msrc