Lucene search
GoogleOSV:CVE-2020-11073HistoryMay 13, 2020 - 7:15 p.m.
CVE-2020-11073
2020-05-1319:15:11
Google
osv.dev
3
In Autoswitch Python Virtualenv before version 0.16.0, a user who enters a directory with a malicious .venv file could run arbitrary code without any user interaction. This is fixed in version: 1.16.0
References
github.com/MichaelAquilina/zsh-autoswitch-virtualenv/commit/30c77db7c83eca2bc5f6134fccbdc117b49a6a05
github.com/MichaelAquilina/zsh-autoswitch-virtualenv/issues/122
github.com/MichaelAquilina/zsh-autoswitch-virtualenv/pull/123
github.com/MichaelAquilina/zsh-autoswitch-virtualenv/security/advisories/GHSA-h8wm-cqq6-957q
Related
cve
cve
CVE-2020-11073
2020-05-13 19:15:11
nvd
nvd
CVE-2020-11073
2020-05-13 19:15:11
prion
prion
Code injection
2020-05-13 19:15:00
cvelist
cvelist
CVE-2020-11073 Remote Code Execution in Autoswitch Python Virtualenv
2020-05-13 18:55:14