CVE-2022-34501
CVE-2022-34501 concerns the bin-collection package for Python (PyPI) prior to v0.1, where a third-party backdoor enables code execution. The vulnerability affects the library’s handling of external packages mirrored from various sources, allowing an attacker to inject and execute malicious code. ...