Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-39838

Malicious code in bioql PyPI...

4.7CVSS5.2AI score0.0002EPSS
Exploits1References1
OSV
OSVadded 2024/01/31 3:16 p.m.12 views

BIT-MINICONDA-2023-35845

Anaconda 3 2023.03-1-Linux allows local users to disrupt TLS certificate validation by modifying the cacert.pem file used by the installed pip program. This occurs because many files are installed as world-writable on Linux, ignoring umask, even when these files are installed as root. Miniconda i...

4.7CVSS4.6AI score0.0002EPSS
Exploits1References1
BDU FSTEC
BDU FSTECadded 2023/10/28 12:0 a.m.3 views

The vulnerability of the Python programming language distribution Anaconda lies in the ability to write files in the anaconda3 directory, which allows a malicious actor to trigger a service failure.

The vulnerability of the Python Anaconda distribution relates to the ability to write files in the anaconda3 directory. For example, it is possible to modify the cacert.pem file used by the installed pip package. Exploiting this vulnerability could allow a perpetrator to cause a service failure...

4.7CVSS7AI score0.2625EPSS
Exploits7References5Affected Software1
NVD
NVDadded 2023/09/11 8:15 a.m.12 views

CVE-2023-35845

Anaconda 3 2023.03-1-Linux allows local users to disrupt TLS certificate validation by modifying the cacert.pem file used by the installed pip program. This occurs because many files are installed as world-writable on Linux, ignoring umask, even when these files are installed as root. Miniconda i...

4.7CVSS4.7AI score0.0002EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2023/09/11 8:15 a.m.3 views

CVE-2023-35845

Anaconda 3 2023.03-1-Linux allows local users to disrupt TLS certificate validation by modifying the cacert.pem file used by the installed pip program. This occurs because many files are installed as world-writable on Linux, ignoring umask, even when these files are installed as root. Miniconda i...

4.7CVSS5.4AI score0.0002EPSS
Exploits1References2
Cvelist
Cvelistadded 2023/09/11 12:0 a.m.19 views

CVE-2023-35845

Anaconda 3 2023.03-1-Linux allows local users to disrupt TLS certificate validation by modifying the cacert.pem file used by the installed pip program. This occurs because many files are installed as world-writable on Linux, ignoring umask, even when these files are installed as root. Miniconda i...

4.9AI score0.0002EPSS
Exploits1References1
UbuntuCve
UbuntuCveadded 2023/07/25 9:15 p.m.52 views

CVE-2023-37920

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi prior to version 2023.07.22 recognizes "e-Tugra" root certificates. e-Tugra's root certificates were subject to an investigation prompted ...

9.8CVSS6.9AI score0.00119EPSS
Exploits0References3
Rows per page
Query Builder