3 matches found
CVE-2022-40806
The d8s-uuids for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-hypothesis package. The affected version is 0.1.0...
CVE-2022-40806
The d8s-uuids for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-hypothesis package. The affected version is 0.1.0...
CVE-2022-40806
CVE-2022-40806 affects the Python package d8s-uuids from PyPI (version 0.1.0). The root cause is a backdoor inserted by a third party in the package, tracked across multiple feeds (e.g., Red Hat, NVD, OSV, Veracode). The vulnerability enables remote code execution with a high impact : attacker-co...