Lucene search
K

4 matches found

OSV
OSV
added 2021/11/12 10:15 p.m.12 views

CVE-2021-3840

A dependency confusion vulnerability was reported in the Antilles open-source software prior to version 1.0.1 that could allow for remote code execution during installation due to a package listed in requirements.txt not existing in the public package index PyPi. MITRE classifies this weakness as...

8.8CVSS8.9AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2021/11/12 10:15 p.m.2 views

CVE-2021-3840

A dependency confusion vulnerability was reported in the Antilles open-source software prior to version 1.0.1 that could allow for remote code execution during installation due to a package listed in requirements.txt not existing in the public package index PyPi. MITRE classifies this weakness as...

8.8CVSS7.7AI score0.01971EPSS
Exploits0References2
OSV
OSV
added 2021/11/12 10:15 p.m.20 views

PYSEC-2021-840

A dependency confusion vulnerability was reported in the Antilles open-source software prior to version 1.0.1 that could allow for remote code execution during installation due to a package listed in requirements.txt not existing in the public package index PyPi. MITRE classifies this weakness as...

8.8CVSS2.4AI score0.01971EPSS
Exploits0References1
Prion
Prion
added 2021/11/12 10:15 p.m.12 views

Type confusion

A dependency confusion vulnerability was reported in the Antilles open-source software prior to version 1.0.1 that could allow for remote code execution during installation due to a package listed in requirements.txt not existing in the public package index PyPi. MITRE classifies this weakness as...

6.8CVSS8.9AI score0.01971EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder