Lucene search

K
cvelistMitreCVELIST:CVE-2022-40897
HistoryDec 22, 2022 - 12:00 a.m.

CVE-2022-40897

2022-12-2200:00:00
mitre
www.cve.org
2

6.2 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.5%

Python Packaging Authority (PyPA) setuptools before 65.5.1 allows remote attackers to cause a denial of service via HTML in a crafted package or custom PackageIndex page. There is a Regular Expression Denial of Service (ReDoS) in package_index.py.