CVE-2025-15282

ADVISORY - nist

Summary

User-controlled data URLs parsed by urllib.request.DataHandler allow injecting headers through newlines in the data URL mediatype.

EPSS Score⁠: 0.00046 (0.141)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-93⁠

Improper Neutralization of CRLF Sequences ('CRLF Injection')

ADVISORY - redhat

CWE-93⁠

Improper Neutralization of CRLF Sequences ('CRLF Injection')

Impacted images

Advisories

Docker

CREATED

1 month ago

UPDATED

1 month ago

ADVISORY ID

CVE-2025-15282

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Package	Type	OS Name	OS Version	Affected Ranges	Fix Versions
python	dhi	-	-	<3.13.12	3.13.12
python	dhi	-	-	>=3.14.0-alpha1,<3.14.3	3.14.3
python	dhi	-	-	>=3.15.0-alpha1,<3.15.0-alpha6	3.15.0-alpha6

Severity and metrics

No CVSS data available from this advisory.

NIST

CREATED

1 month ago

UPDATED

1 month ago

ADVISORY IDCVE-2025-15282⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-93⁠

CVSS SCORE

6medium

Debian

CREATED

1 month ago

UPDATED

2 days ago

ADVISORY IDCVE-2025-15282⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

Ubuntu

CREATED

1 month ago

UPDATED

20 days ago

ADVISORY IDCVE-2025-15282⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Amazon

CREATED

9 days ago

UPDATED

9 days ago

ADVISORY IDALAS2023-2026-1437⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Amazon

CREATED

13 days ago

UPDATED

13 days ago

ADVISORY IDALAS2023-2026-1444⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Bitnami

CREATED

1 month ago

UPDATED

3 days ago

ADVISORY ID

BIT-libpython-2025-15282

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

6medium

Bitnami

CREATED

1 month ago

UPDATED

3 days ago

ADVISORY ID

BIT-python-2025-15282

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

6medium

Bitnami

CREATED

1 month ago

UPDATED

5 days ago

ADVISORY ID

BIT-python-min-2025-15282

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

6medium

Red Hat

CREATED

1 month ago

UPDATED

1 month ago

ADVISORY IDCVE-2025-15282⁠

EXPLOITABILITY SCORE

1.2

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-93⁠

CVSS SCORE

4.8medium

Chainguard

CREATED

14 days ago

UPDATED

14 days ago

ADVISORY ID

CGA-677h-pf23-hqmp

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

minimos

CREATED

22 days ago

UPDATED

22 days ago

ADVISORY ID

MINI-97x6-jwvg-gpjj

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

minimos

CREATED

22 days ago

UPDATED

22 days ago

ADVISORY ID

MINI-fcm2-rc49-rv69

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

minimos

CREATED

22 days ago

UPDATED

22 days ago

ADVISORY ID

MINI-ggmq-rhqq-jcxx

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

minimos

CREATED

22 days ago

UPDATED

22 days ago

ADVISORY ID

MINI-mg8c-6mjr-95cq

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

minimos

CREATED

17 days ago

UPDATED

17 days ago

ADVISORY ID

MINI-v3p2-j7f9-h7gf

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY