Lucene search
China National Vulnerability DatabaseCNVD-2022-89113HistoryOct 13, 2022 - 12:00 a.m.
Democritus Project d8s-yaml code execution vulnerability
2022-10-1300:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
democritus project
d8s-yaml
code execution
vulnerability
file-system
pypi
remote execute
EPSS
0.005
Percentile
75.6%
Democritus Project is a collection of simple, effective, modular, well-tested and well-documented features from Democritus. d8s-yaml version 0.1.0 of Democritus Project is vulnerable to a code execution vulnerability stemming from the presence of a potential code execution package, democritus-, inserted by a third party, in d8s-yaml distributed on PyPI. file-system, which can be exploited by an attacker to remotely execute code.
Related
osv
osv
PYSEC-2022-43034
2022-10-11 22:15:00
CVE-2022-41380
2022-10-11 22:15:11
PYSEC-2022-43039
2022-10-11 22:15:00
prion
prion
Code injection
2022-10-11 22:15:00
cvelist
cvelist
CVE-2022-41380
2022-10-11 00:00:00
nvd
nvd
CVE-2022-41380
2022-10-11 22:15:11
cve
cve
CVE-2022-41380
2022-10-11 22:15:11