CVE-2021-34141

ADVISORY - github

Summary

Incomplete string comparison in the numpy.core component in NumPy1.9.x, which allows attackers to fail the APIs via constructing specific string objects.

EPSS Score⁠: 0.00065 (0.203)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-697⁠

Incorrect Comparison

ADVISORY - github

CWE-697⁠

Incorrect Comparison

ADVISORY - gitlab

CWE-1035⁠

OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities

CWE-697⁠

Incorrect Comparison

CWE-937⁠

OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

ADVISORY - redhat

CWE-20⁠

Improper Input Validation

Impacted images

Advisories

Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.