4 matches found
CVE-2022-23531
creationtimestamp| type| source ---|---|--- 2022-12-17 02:24:34+00:00| seen| https://t.me/cibsecurity/54794 2025-04-17 14:58:33+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12246...
CVE-2022-23531
CVE-2022-23531 affects GuardDog (CLI to identify malicious PyPI packages). A Relative Path Traversal flaw exists in GuardDog versions prior to 0.1.5 during extraction of .tar.gz packages, allowing an attacker to write arbitrary files on the host when scanning a specially crafted local PyPI packag...
CVE-2022-23531 Arbitrary file write when scanning a specially-crafted local PyPI package
GuardDog is a CLI tool to identify malicious PyPI packages. Versions prior to 0.1.5 are vulnerable to Relative Path Traversal when scanning a specially-crafted local PyPI package. Running GuardDog against a specially-crafted package can allow an attacker to write an arbitrary file on the machine...
CVE-2022-23531 Arbitrary file write when scanning a specially-crafted local PyPI package
GuardDog is a CLI tool to identify malicious PyPI packages. Versions prior to 0.1.5 are vulnerable to Relative Path Traversal when scanning a specially-crafted local PyPI package. Running GuardDog against a specially-crafted package can allow an attacker to write an arbitrary file on the machine...