{"api_version":"1","generated_at":"2026-04-22T21:02:54+00:00","cve":"CVE-2021-20095","urls":{"html":"https://cve.report/CVE-2021-20095","api":"https://cve.report/api/cve/CVE-2021-20095.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2021-20095","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2021-20095"},"summary":{"title":"CVE-2021-20095","description":"** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none.","state":"REJECT","assigner":"cve@mitre.org","published_at":"2021-04-29 15:15:00","updated_at":"2023-11-07 03:28:00"},"problem_types":[],"metrics":[],"references":[{"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PKXUEWVKU5WASYSAFXQP6SFSDOG773RV/","name":"FEDORA-2021-7e2a143808","refsource":"FEDORA","tags":[],"title":"[SECURITY] Fedora 32 Update: babel-2.8.0-4.fc32 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MORYINYUSYI6XLC4UKPRGGFD2WMO7GSM/","name":"FEDORA-2021-a499f89369","refsource":"FEDORA","tags":[],"title":"[SECURITY] Fedora 33 Update: babel-2.8.1-2.fc33 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://www.tenable.com/security/research/tra-2021-14","name":"https://www.tenable.com/security/research/tra-2021-14","refsource":"MISC","tags":[],"title":"Python-Babel/Babel Locale Directory Traversal / Arbitrary Code Execution - Research Advisory | TenableĀ®","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2021-20095","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-20095","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2021","cve_id":"20095","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"fedoraproject","cpe5":"fedora","cpe6":"32","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2021","cve_id":"20095","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"fedoraproject","cpe5":"fedora","cpe6":"33","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2021","cve_id":"20095","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"pocoo","cpe5":"babel","cpe6":"2.9.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[{"cve":"CVE-2021-20095","qid":"159463","title":"Oracle Enterprise Linux Security Update for python27:2.7 (ELSA-2021-4151)"},{"cve":"CVE-2021-20095","qid":"159467","title":"Oracle Enterprise Linux Security Update for python38:3.8 and python38-devel:3.8 (ELSA-2021-4162)"},{"cve":"CVE-2021-20095","qid":"159469","title":"Oracle Enterprise Linux Security Update for babel (ELSA-2021-4201)"},{"cve":"CVE-2021-20095","qid":"178841","title":"Debian Security Update for python-babel (DLA 2790-1)"},{"cve":"CVE-2021-20095","qid":"178932","title":"Debian Security Update for python-babel (DSA 5018-1)"},{"cve":"CVE-2021-20095","qid":"198380","title":"Ubuntu Security Notification for Babel vulnerability (USN-4962-1)"},{"cve":"CVE-2021-20095","qid":"239580","title":"Red Hat Update for rh-python38 (RHSA-2021:3254)"},{"cve":"CVE-2021-20095","qid":"239582","title":"Red Hat Update for python27 (RHSA-2021:3252)"},{"cve":"CVE-2021-20095","qid":"239807","title":"Red Hat Update for babel (RHSA-2021:4201)"},{"cve":"CVE-2021-20095","qid":"239826","title":"Red Hat Update for python27:2.7 (RHSA-2021:4151)"},{"cve":"CVE-2021-20095","qid":"239845","title":"Red Hat Update for python38:3.8 and python38-devel:3.8 (RHSA-2021:4162)"},{"cve":"CVE-2021-20095","qid":"281220","title":"Fedora Security Update for babel (FEDORA-2021-7e2a143808)"},{"cve":"CVE-2021-20095","qid":"281221","title":"Fedora Security Update for babel (FEDORA-2021-a499f89369)"},{"cve":"CVE-2021-20095","qid":"377404","title":"Alibaba Cloud Linux Security Update for babel (ALINUX3-SA-2022:0085)"},{"cve":"CVE-2021-20095","qid":"378599","title":"Splunk Enterprise Third Party Package Updates for June (SVD-2023-0613)"},{"cve":"CVE-2021-20095","qid":"670477","title":"EulerOS Security Update for babel (EulerOS-SA-2021-2235)"},{"cve":"CVE-2021-20095","qid":"670503","title":"EulerOS Security Update for babel (EulerOS-SA-2021-2261)"},{"cve":"CVE-2021-20095","qid":"670529","title":"EulerOS Security Update for babel (EulerOS-SA-2021-2287)"},{"cve":"CVE-2021-20095","qid":"670561","title":"EulerOS Security Update for babel (EulerOS-SA-2021-2319)"},{"cve":"CVE-2021-20095","qid":"670595","title":"EulerOS Security Update for babel (EulerOS-SA-2021-2353)"},{"cve":"CVE-2021-20095","qid":"670998","title":"EulerOS Security Update for babel (EulerOS-SA-2021-2571)"},{"cve":"CVE-2021-20095","qid":"710579","title":"Gentoo Linux Babel Remote code execution Vulnerability (GLSA 202208-03)"},{"cve":"CVE-2021-20095","qid":"940077","title":"AlmaLinux Security Update for babel (ALSA-2021:4201)"},{"cve":"CVE-2021-20095","qid":"940522","title":"AlmaLinux Security Update for python27:2.7 (ALSA-2021:4151)"},{"cve":"CVE-2021-20095","qid":"940526","title":"AlmaLinux Security Update for python38:3.8 and python38-devel:3.8 (ALSA-2021:4162)"},{"cve":"CVE-2021-20095","qid":"960320","title":"Rocky Linux Security Update for python27:2.7 (RLSA-2021:4151)"},{"cve":"CVE-2021-20095","qid":"960325","title":"Rocky Linux Security Update for babel (RLSA-2021:4201)"},{"cve":"CVE-2021-20095","qid":"960342","title":"Rocky Linux Security Update for python38:3.8 and python38-devel:3.8 (RLSA-2021:4162)"}]},"source_records":{"cve_program":{"data_type":"CVE","data_format":"MITRE","data_version":"4.0","CVE_data_meta":{"ID":"CVE-2021-20095","ASSIGNER":"cve@mitre.org","STATE":"REJECT"},"description":{"description_data":[{"lang":"eng","value":"** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none."}]}},"nvd":{"publishedDate":"2021-04-29 15:15:00","lastModifiedDate":"2023-11-07 03:28:00","problem_types":[],"metrics":[],"configurations":{"CVE_data_version":"4.0","nodes":[]}},"legacy_mitre":{"record":{"CveYear":"2021","CveId":"20095","Ordinal":"194084","Title":"CVE-2021-20095","CVE":"CVE-2021-20095","Year":"2021"},"notes":[{"CveYear":"2021","CveId":"20095","Ordinal":"1","NoteData":"** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none.","Type":"Description","Title":null},{"CveYear":"2021","CveId":"20095","Ordinal":"2","NoteData":"2021-04-29","Type":"Other","Title":"Published"},{"CveYear":"2021","CveId":"20095","Ordinal":"3","NoteData":"2021-06-16","Type":"Other","Title":"Modified"}]}}}