CVE-2024-9774

MEDIUM 6.5

Python-sql: python-sql unary operators does not escape non-expression

CVSS Score

6.5

EPSS Score

0.0%

EPSS Percentile

0th

A vulnerability was found in python-sql where unary operators do not escape non-Expression.

CWE	CWE-150
Published	Dec 27, 2024
Last Updated	Aug 30, 2025

Stay Ahead of the Next One

Get instant alerts for

Be the first to know when new medium vulnerabilities are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

References

NVD ↗ CVE.org ↗ EPSS Data ↗

access.redhat.com: https://access.redhat.com/security/cve/CVE-2024-9774 bugzilla.redhat.com: https://bugzilla.redhat.com/show_bug.cgi?id=2332734 discuss.tryton.org: https://discuss.tryton.org/t/security-release-for-issue-93/7889/3 lists.debian.org: https://lists.debian.org/debian-lts-announce/2024/10/msg00023.html