Sign In

CVE-2026-5713

ADVISORY - nist

Summary

The "profiling.sampling" module (Python 3.15+) and "asyncio introspection capabilities" (3.14+, "python -m asyncio ps" and "python -m asyncio pstree") features could be used to read and write addresses in a privileged process if that process connected to a malicious or "infected" Python process via the remote debugging feature. This vulnerability requires persistently and repeatedly connecting to the process to be exploited, even after the connecting process crashes with high likelihood due to ASLR.

EPSS Score: 0.00013 (0.020)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-121

Stack-based Buffer Overflow

CWE-125

Out-of-bounds Read

ADVISORY - redhat

CWE-822

Untrusted Pointer Dereference

Impacted images

Advisories

Docker

CREATED

UPDATED

ADVISORY ID

CVE-2026-5713

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM ADVISORY
PackageTypeOS NameOS VersionAffected RangesFix Versions
pythondhi-->=0Not yet available
alpine/python-3.10apkalpine3.23>=0Not yet available
alpine/python-3.11apkalpine3.23>=0Not yet available
alpine/python-3.12apkalpine3.23>=0Not yet available
alpine/python-3.13apkalpine3.23>=0Not yet available
alpine/python-3.14apkalpine3.23>=0Not yet available

Severity and metrics

No CVSS data available from this advisory.

NIST

CREATED

UPDATED

ADVISORY IDCVE-2026-5713
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CWE-121CWE-125

CVSS SCORE

5.3medium

Debian

CREATED

UPDATED

ADVISORY IDCVE-2026-5713
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM ADVISORY

Ubuntu

CREATED

UPDATED

ADVISORY IDCVE-2026-5713
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Bitnami

CREATED

UPDATED

ADVISORY ID

BIT-libpython-2026-5713

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

5.3medium

Bitnami

CREATED

UPDATED

ADVISORY ID

BIT-python-2026-5713

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

5.3medium

Bitnami

CREATED

UPDATED

ADVISORY ID

BIT-python-min-2026-5713

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

5.3medium

Red Hat

CREATED

UPDATED

ADVISORY IDCVE-2026-5713
EXPLOITABILITY SCORE

0.8

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CWE-822

CVSS SCORE

6medium