Lucene search
+L

4 matches found

vulnersOsv
vulnersOsv
added 2022/10/11 10:15 p.m.3 views

cy-ioc-finder (>=7.2.3 <=7.2.13), d8s-archives (>=0.2.0 <=0.7.0) +25 more potentially affected by CVE-2022-42039 via d8s-lists (>=0.3.0 <=0.8.0)

d8s-lists PYPI version =0.3.0, =7.2.3, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.6.0, =0.2.0, =0.2.0, =0.2.0, =0.1.2, =0.2.0, =0.6.0 and more Source cves: CVE-2022-42039 Source advisory: OSV:PYSEC-2022-43027...

9.8CVSS7.2AI score0.01168EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2022/10/11 12:0 a.m.5 views

CVE-2022-42039

The d8s-lists package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-dicts package. The affected version is 0.1.0...

6.8AI score0.01168EPSS
Exploits1References3
Cvelist
Cvelist
added 2022/10/11 12:0 a.m.30 views

CVE-2022-42039

The d8s-lists package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-dicts package. The affected version is 0.1.0...

9.8AI score0.01168EPSS
Exploits1References3
CVE
CVE
added 2022/10/11 12:0 a.m.52 views

CVE-2022-42039

The CVE-2022-42039 entry concerns the Python package d8s-lists (PyPI) with a backdoor inserted by a third party: the democritus-dicts package, affecting version 0.1.0. According to connected sources, this allows potential code execution if the compromised package is installed. The CVSSv3.1 base s...

9.8CVSS9.4AI score0.01168EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder