CVE-2022-43305

The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-algorithms package. The affected version of d8s-htm is 0.1.0...

CVE-2022-44049

The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-grammars package. The affected version of d8s-htm is 0.1.0...

CVE-2022-43305

CVE-2022-43305 concerns the d8s-python package on PyPI, where a third-party backdoor was inserted into the Democritus ecosystem (democritus-algorithms) and is linked to d8s-htm 0.1.0. Connected sources corroborate that the backdoor could enable code execution, with multiple advisories referencing...

d8s-python (>=0.2.0 <=0.9.0) potentially affected by CVE-2022-42040 via d8s-algorithms (>=0.3.0 <=0.7.0)

d8s-algorithms PYPI version =0.3.0, =0.2.0, =0.9.0 Source cves: CVE-2022-42040 Source advisory: OSV:PYSEC-2022-43019...

d8s-archives (>=0.2.0 <=0.7.0), d8s-asns (>=0.2.0 <=0.7.0) +13 more potentially affected by CVE-2022-42041 via d8s-file-system (=0.10.0)

d8s-file-system PYPI version =0.10.0 is affected by a known vulnerability. The following packages have a transitive dependency on d8s-file-system and may be impacted: - d8s-archives =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.4.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0,...

CVE-2022-38887

The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The democritus-strings package. The affected version is 0.1.0...

PYSEC-2022-43083

The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The democritus-strings package. The affected version is 0.1.0...

PYSEC-2022-43125

The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The democritus-strings package. The affected version is 0.1.0...

PYSEC-2022-43125

The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The democritus-strings package. The affected version is 0.1.0...

PYSEC-2022-43083

The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The democritus-strings package. The affected version is 0.1.0...

CVE-2022-38887

The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The democritus-strings package. The affected version is 0.1.0...

CVE-2022-38887

CVE-2022-38887 affects the d8s-python package for Python distributed on PyPI. The vulnerability arises from a backdoor inserted by a third party in the democritus-strings package, with the affected version identified as 0.1.0. The NVD/CVE data lists a critical impact (CVSS 3.1: AV:N/AC:L/PR:N/UI:...

PT-2022-24612 · Pypi · Democritus-Strings +1

Name of the Vulnerable Software and Affected Versions: d8s-python version 0.1.0 Description: The d8s-python package for python, distributed on PyPI, contains a potential code-execution backdoor inserted by a third party, specifically affecting the democritus-strings package. Recommendations: For...

PT-2022-37388 · Pypi · Democritus-Strings +1

Name of the Vulnerable Software and Affected Versions: d8s-python version 0.1.0 Description: The issue concerns a potential code-execution backdoor inserted by a third party into the d8s-python package distributed on PyPI. This backdoor is related to the democritus-strings package. Recommendation...

Democritus Project 代码问题漏洞

Democritus Project is a collection of simple, effective, modular, fully tested and well-documented features from Democritus, Inc. A security vulnerability exists in Democritus Project d8s-python version 0.1.0, which stems from the presence of a potential code execution backdoor inserted by a thir...

PT-2022-37346 · Pypi · Democritus-Strings +1

Name of the Vulnerable Software and Affected Versions: d8s-python version 0.1.0 Description: The issue concerns a potential code-execution backdoor inserted by a third party into the d8s-python package distributed on PyPI. This backdoor is related to the democritus-strings package. Recommendation...