Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Execution with Unnecessary Privileges in ipython

🗓️ 21 Jan 2022 18:55:30Reported by GitHub Advisory DatabaseType 
github
 github🔗 github.com👁 35 Views

IPython arbitrary code execution vulnerability due to untrusted file execution in CWD allowing privilege escalatio

Related
Detection
Refs
ReporterTitlePublishedViews
Family
FreeBSD		ipython -- Execution with Unnecessary Privileges
19 Jan 202200:00
freebsd
AlpineLinux		CVE-2022-21699
19 Jan 202221:15
alpinelinux
AstraLinux		 Astra Linux - уязвимость в ipython
20 May 202605:53
astralinux
BDU FSTEC		The vulnerability of the shell command line interface in IPython’s interactive computing environment allows a hacker to access confidential data, compromise its integrity, and cause service failures.
16 Sep 202200:00
bdu_fstec
Chainguard		CVE-2022-21699 vulnerabilities
19 Jan 202222:15
cgr
Circl		CVE-2022-21699
19 Jan 202213:42
circl
CNNVD		Interactive Python 安全漏洞
19 Jan 202200:00
cnnvd
CVE		CVE-2022-21699
19 Jan 202221:15
cve
Cvelist		CVE-2022-21699 Execution with Unnecessary Privileges in ipython
19 Jan 202221:15
cvelist
Debian		[SECURITY] [DLA 2896-1] ipython security update
24 Jan 202216:37
debian
Rows per page
Vulners
Node
ipythonipythonRange8.0.08.0.1pip
OR
ipythonipythonRange7.17.07.31.1pip
OR
ipythonipythonRange6.0.07.16.3pip
OR
ipythonipythonRange<5.11pip
SourceLink
githubwww.github.com/ipython/ipython/security/advisories/GHSA-pq7m-3gw7-gq5x
githubwww.github.com/ipython/ipython/commit/46a51ed69cdf41b4333943d9ceeb945c4ede5668
ipythonwww.ipython.readthedocs.io/en/stable/whatsnew/version8.html
nvdwww.nvd.nist.gov/vuln/detail/CVE-2022-21699
listswww.lists.debian.org/debian-lts-announce/2022/01/msg00021.html
githubwww.github.com/pypa/advisory-database/tree/main/vulns/ipython/PYSEC-2022-12.yaml
listswww.lists.fedoraproject.org/archives/list/[email protected]/message/CRQRTWHYXMLDJ572VGVUZMUPEOTPM3KB
listswww.lists.fedoraproject.org/archives/list/[email protected]/message/DZ7LVZBB4D7KVSFNEQUBEHFO3JW6D2ZK
githubwww.github.com/ipython/ipython/commit/5fa1e409d2dc126c456510c16ece18e08b524e5b
githubwww.github.com/ipython/ipython/commit/67ca2b3aa9039438e6f80e3fccca556f26100b4d
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
27 Sep 2024 17:22Current
0.7Low risk
Vulners AI Score0.7
CVSS 24.6
CVSS 3.18.2 - 8.8
EPSS0.0106
SSVC
CWE-250CWE-269CWE-279
ipythonarbitrary code executionvulnerabilityuntrusted filescwdprivilege escalationpatchdocumentationpython versions
35