CVE-2026-2297 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
PSF	CNA	5.7 MEDIUM	LOCAL	LOW	LOW	CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 1%

Early Detection

Affected products identified ahead of NVD analysis through intelligence sources.

Vendor	Product	Version	Source
python	cpython	𝑥 < 3.13.13	CNA
python	cpython	3.14.0 ≤ 𝑥 < 3.14.4	CNA

openSUSE / SLES Releases

openSUSE Product

Release

libpython3_10-1_0

suse enterprise server 15 SP4

3.10.20-150400.4.102.1

fixed

libpython3_11-1_0

suse enterprise desktop 15 SP7	3.11.15-150600.3.53.1 fixed
suse enterprise sap 15 SP4	3.11.15-150400.9.80.1 fixed
suse enterprise sap 15 SP7	3.11.15-150600.3.53.1 fixed
suse enterprise server 15 SP4	3.11.15-150400.9.80.1 fixed
suse enterprise server 15 SP5	3.11.15-150400.9.80.1 fixed
suse enterprise server 15 SP6	3.11.15-150600.3.53.1 fixed
suse enterprise server 15 SP7	3.11.15-150600.3.53.1 fixed

libpython3_12-1_0

suse enterprise server 15 SP6

3.12.13-150600.3.48.1

fixed

libpython3_13-1_0

suse enterprise desktop 15 SP7	3.13.13-150700.4.45.1 fixed
suse enterprise sap 15 SP7	3.13.13-150700.4.45.1 fixed
suse enterprise server 15 SP7	3.13.13-150700.4.45.1 fixed

python310

suse enterprise server 15 SP4

3.10.20-150400.4.102.1

fixed

python310-base

suse enterprise server 15 SP4

3.10.20-150400.4.102.1

fixed

python310-curses

suse enterprise server 15 SP4

3.10.20-150400.4.102.1

fixed

python310-dbm

suse enterprise server 15 SP4

3.10.20-150400.4.102.1

fixed

python310-devel

suse enterprise server 15 SP4

3.10.20-150400.4.102.1

fixed

python310-idle

suse enterprise server 15 SP4

3.10.20-150400.4.102.1

fixed

python310-tk

suse enterprise server 15 SP4

3.10.20-150400.4.102.1

fixed

python310-tools

suse enterprise server 15 SP4

3.10.20-150400.4.102.1

fixed

python311

suse enterprise desktop 15 SP7	3.11.15-150600.3.53.1 fixed
suse enterprise sap 15 SP4	3.11.15-150400.9.80.1 fixed
suse enterprise sap 15 SP7	3.11.15-150600.3.53.1 fixed
suse enterprise server 15 SP4	3.11.15-150400.9.80.1 fixed
suse enterprise server 15 SP5	3.11.15-150400.9.80.1 fixed
suse enterprise server 15 SP6	3.11.15-150600.3.53.1 fixed
suse enterprise server 15 SP7	3.11.15-150600.3.53.1 fixed

python311-base

suse enterprise desktop 15 SP7	3.11.15-150600.3.53.1 fixed
suse enterprise sap 15 SP4	3.11.15-150400.9.80.1 fixed
suse enterprise sap 15 SP7	3.11.15-150600.3.53.1 fixed
suse enterprise server 15 SP4	3.11.15-150400.9.80.1 fixed
suse enterprise server 15 SP5	3.11.15-150400.9.80.1 fixed
suse enterprise server 15 SP6	3.11.15-150600.3.53.1 fixed
suse enterprise server 15 SP7	3.11.15-150600.3.53.1 fixed

python311-curses

suse enterprise desktop 15 SP7	3.11.15-150600.3.53.1 fixed
suse enterprise sap 15 SP7	3.11.15-150600.3.53.1 fixed
suse enterprise server 15 SP4	3.11.15-150400.9.80.1 fixed
suse enterprise server 15 SP5	3.11.15-150400.9.80.1 fixed
suse enterprise server 15 SP6	3.11.15-150600.3.53.1 fixed
suse enterprise server 15 SP7	3.11.15-150600.3.53.1 fixed

python311-dbm

suse enterprise desktop 15 SP7	3.11.15-150600.3.53.1 fixed
suse enterprise sap 15 SP7	3.11.15-150600.3.53.1 fixed
suse enterprise server 15 SP4	3.11.15-150400.9.80.1 fixed
suse enterprise server 15 SP5	3.11.15-150400.9.80.1 fixed
suse enterprise server 15 SP6	3.11.15-150600.3.53.1 fixed
suse enterprise server 15 SP7	3.11.15-150600.3.53.1 fixed

python311-devel

suse enterprise desktop 15 SP7	3.11.15-150600.3.53.1 fixed
suse enterprise sap 15 SP7	3.11.15-150600.3.53.1 fixed
suse enterprise server 15 SP4	3.11.15-150400.9.80.1 fixed
suse enterprise server 15 SP5	3.11.15-150400.9.80.1 fixed
suse enterprise server 15 SP6	3.11.15-150600.3.53.1 fixed
suse enterprise server 15 SP7	3.11.15-150600.3.53.1 fixed

python311-doc

suse enterprise server 15 SP4	3.11.15-150400.9.80.1 fixed
suse enterprise server 15 SP5	3.11.15-150400.9.80.1 fixed

python311-doc-devhelp

suse enterprise server 15 SP4	3.11.15-150400.9.80.1 fixed
suse enterprise server 15 SP5	3.11.15-150400.9.80.1 fixed

python311-idle

suse enterprise desktop 15 SP7	3.11.15-150600.3.53.1 fixed
suse enterprise sap 15 SP7	3.11.15-150600.3.53.1 fixed
suse enterprise server 15 SP4	3.11.15-150400.9.80.1 fixed
suse enterprise server 15 SP5	3.11.15-150400.9.80.1 fixed
suse enterprise server 15 SP6	3.11.15-150600.3.53.1 fixed
suse enterprise server 15 SP7	3.11.15-150600.3.53.1 fixed

python311-tk

suse enterprise desktop 15 SP7	3.11.15-150600.3.53.1 fixed
suse enterprise sap 15 SP7	3.11.15-150600.3.53.1 fixed
suse enterprise server 15 SP4	3.11.15-150400.9.80.1 fixed
suse enterprise server 15 SP5	3.11.15-150400.9.80.1 fixed
suse enterprise server 15 SP6	3.11.15-150600.3.53.1 fixed
suse enterprise server 15 SP7	3.11.15-150600.3.53.1 fixed

python311-tools

suse enterprise desktop 15 SP7	3.11.15-150600.3.53.1 fixed
suse enterprise sap 15 SP7	3.11.15-150600.3.53.1 fixed
suse enterprise server 15 SP4	3.11.15-150400.9.80.1 fixed
suse enterprise server 15 SP5	3.11.15-150400.9.80.1 fixed
suse enterprise server 15 SP6	3.11.15-150600.3.53.1 fixed
suse enterprise server 15 SP7	3.11.15-150600.3.53.1 fixed

python312

suse enterprise server 15 SP6

3.12.13-150600.3.48.1

fixed

python312-base

suse enterprise server 15 SP6

3.12.13-150600.3.48.1

fixed

python312-curses

suse enterprise server 15 SP6

3.12.13-150600.3.48.1

fixed

python312-dbm

suse enterprise server 15 SP6

3.12.13-150600.3.48.1

fixed

python312-devel

suse enterprise server 15 SP6

3.12.13-150600.3.48.1

fixed

python312-idle

suse enterprise server 15 SP6

3.12.13-150600.3.48.1

fixed

python312-tk

suse enterprise server 15 SP6

3.12.13-150600.3.48.1

fixed

python312-tools

suse enterprise server 15 SP6

3.12.13-150600.3.48.1

fixed

python313

suse enterprise desktop 15 SP7	3.13.13-150700.4.45.1 fixed
suse enterprise sap 15 SP7	3.13.13-150700.4.45.1 fixed
suse enterprise server 15 SP7	3.13.13-150700.4.45.1 fixed

python313-base

suse enterprise desktop 15 SP7	3.13.13-150700.4.45.1 fixed
suse enterprise sap 15 SP7	3.13.13-150700.4.45.1 fixed
suse enterprise server 15 SP7	3.13.13-150700.4.45.1 fixed

python313-curses

suse enterprise desktop 15 SP7	3.13.13-150700.4.45.1 fixed
suse enterprise sap 15 SP7	3.13.13-150700.4.45.1 fixed
suse enterprise server 15 SP7	3.13.13-150700.4.45.1 fixed

python313-dbm

suse enterprise desktop 15 SP7	3.13.13-150700.4.45.1 fixed
suse enterprise sap 15 SP7	3.13.13-150700.4.45.1 fixed
suse enterprise server 15 SP7	3.13.13-150700.4.45.1 fixed

python313-devel

suse enterprise desktop 15 SP7	3.13.13-150700.4.45.1 fixed
suse enterprise sap 15 SP7	3.13.13-150700.4.45.1 fixed
suse enterprise server 15 SP7	3.13.13-150700.4.45.1 fixed

python313-idle

suse enterprise desktop 15 SP7	3.13.13-150700.4.45.1 fixed
suse enterprise sap 15 SP7	3.13.13-150700.4.45.1 fixed
suse enterprise server 15 SP7	3.13.13-150700.4.45.1 fixed

python313-tk

suse enterprise desktop 15 SP7	3.13.13-150700.4.45.1 fixed
suse enterprise sap 15 SP7	3.13.13-150700.4.45.1 fixed
suse enterprise server 15 SP7	3.13.13-150700.4.45.1 fixed

python313-tools

suse enterprise desktop 15 SP7	3.13.13-150700.4.45.1 fixed
suse enterprise sap 15 SP7	3.13.13-150700.4.45.1 fixed
suse enterprise server 15 SP7	3.13.13-150700.4.45.1 fixed

Red Hat Enterprise Linux Releases

Red Hat Product

Release

python3.12

RHEL 8	0:3.12.13-2.el8_10 fixed
RHEL 9	0:3.12.13-2.el9_8 fixed

python3.12-debug

RHEL 8	0:3.12.13-2.el8_10 fixed
RHEL 9	0:3.12.13-2.el9_8 fixed

python3.12-devel

RHEL 8	0:3.12.13-2.el8_10 fixed
RHEL 9	0:3.12.13-2.el9_8 fixed

python3.12-idle

RHEL 8	0:3.12.13-2.el8_10 fixed
RHEL 9	0:3.12.13-2.el9_8 fixed

python3.12-libs

RHEL 8	0:3.12.13-2.el8_10 fixed
RHEL 9	0:3.12.13-2.el9_8 fixed

python3.12-rpm-macros

RHEL 8

0:3.12.13-2.el8_10

fixed

python3.12-test

RHEL 8	0:3.12.13-2.el8_10 fixed
RHEL 9	0:3.12.13-2.el9_8 fixed

python3.12-tkinter

RHEL 8	0:3.12.13-2.el8_10 fixed
RHEL 9	0:3.12.13-2.el9_8 fixed

python3.14

RHEL 9

0:3.14.4-2.el9_8

fixed

python3.14-debug

RHEL 9

0:3.14.4-2.el9_8

fixed

python3.14-devel

RHEL 9

0:3.14.4-2.el9_8

fixed

python3.14-freethreading

RHEL 9

0:3.14.4-2.el9_8

fixed

python3.14-freethreading-debug

RHEL 9

0:3.14.4-2.el9_8

fixed

python3.14-freethreading-devel

RHEL 9

0:3.14.4-2.el9_8

fixed

python3.14-freethreading-idle

RHEL 9

0:3.14.4-2.el9_8

fixed

python3.14-freethreading-libs

RHEL 9

0:3.14.4-2.el9_8

fixed

python3.14-freethreading-test

RHEL 9

0:3.14.4-2.el9_8

fixed

python3.14-freethreading-tkinter

RHEL 9

0:3.14.4-2.el9_8

fixed

python3.14-idle

RHEL 9

0:3.14.4-2.el9_8

fixed

python3.14-libs

RHEL 9

0:3.14.4-2.el9_8

fixed

python3.14-test

RHEL 9

0:3.14.4-2.el9_8

fixed

python3.14-tkinter

RHEL 9

0:3.14.4-2.el9_8

fixed

Common Weakness Enumeration

CWE-668 - Exposure of Resource to Wrong Sphere
The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.

Vulnerability Media Exposure

[GERMAN] CPython: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen
Ein lokaler Angreifer kann eine Schwachstelle in CPython ausnutzen, um Sicherheitsvorkehrungen zu umgehen.
Published: 2026-03-04T23:00:00+00:00

References

https://github.com/python/cpython/commit/482d6f8bdba9da3725d272e8bb4a2d25fb6a603e

https://github.com/python/cpython/commit/69ddd9bb2cc4bd69b1565647c18659c6a789ccd9

https://github.com/python/cpython/commit/876858c9f65d9ab656c7fa639f268ce7856d89dd

https://github.com/python/cpython/commit/a51b1b512de1d56b3714b65628a2eae2b07e535e

https://github.com/python/cpython/commit/e58e9802b9bec5cdbf48fc9bf1da5f4fda482e86

https://github.com/python/cpython/issues/145506

https://github.com/python/cpython/pull/145507

http://www.openwall.com/lists/oss-security/2026/03/05/6