CVE-2012-2135

EPSS 1.37% · P80 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2012-2135

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The utf-16 decoder in Python 3.1 through 3.3 does not update the aligned_end variable after calling the unicode_decode_call_errorhandler function, which allows remote attackers to obtain sensitive information (process memory) or cause a denial of service (memory corruption and crash) via unspecified vectors.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Python‘unicode_decode_call_errorhandler’函数敏感信息漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Python是Python软件基金会的一套开源的、面向对象的程序设计语言。该语言具有可扩展、支持模块和包、支持多种平台等特点。 Python 3.1版本至3.3版本中的utf-16解码器中存在漏洞，该漏洞源于调用unicode_decode_call_errorhandler函数之后未更新aligned_end变量。远程攻击者可利用该漏洞通过未明向量获取敏感信息（进程内存不足）或导致拒绝服务（内存破坏并崩溃）。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2012-2135

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2012-2135

请登录查看更多情报信息。

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=670389x_refsource_MISC
http://bugs.python.org/issue14579x_refsource_MISC
http://secunia.com/advisories/51087third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/51089third-party-advisoryx_refsource_SECUNIA
http://www.ubuntu.com/usn/USN-1616-1vendor-advisoryx_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-1615-1vendor-advisoryx_refsource_UBUNTU
http://www.openwall.com/lists/oss-security/2012/04/25/2mailing-listx_refsource_MLIST
http://www.openwall.com/lists/oss-security/2012/04/25/4mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2012-2135

Same Patch Batch · n/a · 2012-08-14 · 38 CVEs total

CVE-2012-4334		Samsung NET-i viewer 任意代码执行漏洞
CVE-2012-2299		Drupal ‘Ubercart’ 模块多个安全漏洞
CVE-2012-2300		Drupal Ubercart模块多个跨站脚本漏洞
CVE-2012-2304		Drupal ‘Linkit’ 模块安全绕过漏洞
CVE-2012-4328		vBulletin 未明安全漏洞
CVE-2012-4329		Samsung TV和BD产品拒绝服务漏洞
CVE-2012-4330		Samsung D6000 TV 缓冲区错误漏洞
CVE-2012-4331		SPIP 多个未明安全漏洞
CVE-2012-4332		WordPress ‘ShareYourCart’ 插件路径泄露漏洞
CVE-2012-4333		Samsung NET-i ware多个拒绝服务和远程代码执行漏洞
CVE-2012-2298		Drupal ‘RealName’ 模块跨站脚本漏洞
CVE-2012-4335		Samsung NET-i viewer 拒绝服务漏洞
CVE-2012-1835		WordPress ‘All-in-One Event Calendar’ 插件多个跨站脚本漏洞
CVE-2012-2096		Drupal ‘Fivestar’ 模块安全限制绕过漏洞
CVE-2012-2097		Drupal ‘Autosave’ 跨站请求伪造漏洞
CVE-2012-4324		PHPJabbers Vacation Rental Script 跨站请求伪造漏洞
CVE-2012-4325		Utopia News Pro 跨站请求伪造漏洞
CVE-2012-4326		AlstraSoft Site Uptime Enterprise 跨站请求伪造漏洞
CVE-2012-4327		WordPress ‘Image News slider’插件未明安全漏洞
CVE-2012-2081		Drupal Organic Groups模块敏感信息漏洞

Showing top 20 of 38 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2012-2135

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2012-2135

I. Basic Information for CVE-2012-2135

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2012-2135

III. Intelligence Information for CVE-2012-2135

Same Patch Batch · n/a · 2012-08-14 · 38 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2012-2135

Leave a comment