Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

18 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 10:56 a.m.2 views

CVE-2022-38881

The d8s-archives for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. The affected version is 0.1.0...

9.8CVSS9.3AI score0.00796EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 11:39 p.m.1 views

CVE-2022-41383

The d8s-archives package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-file-system package. The affected version is 0.1.0...

9.8CVSS9.3AI score0.00474EPSS
Exploits1References1
PyPA
PyPAadded 2022/10/11 10:15 p.m.3 views

PYSEC-2022-43042

The d8s-archives package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-file-system package. The affected version is 0.1.0...

9.8CVSS7AI score0.00474EPSS
Exploits1References4Affected Software1
PyPA
PyPAadded 2022/10/11 10:15 p.m.4 views

PYSEC-2022-43020

The d8s-archives package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-file-system package. The affected version is 0.1.0...

9.8CVSS7AI score0.00474EPSS
Exploits1References4Affected Software1
OSV
OSVadded 2022/10/11 10:15 p.m.28 views

PYSEC-2022-43042

The d8s-archives package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-file-system package. The affected version is 0.1.0...

9.8CVSS9.6AI score0.00474EPSS
Exploits1References3
vulnersOsv
vulnersOsvadded 2022/10/11 10:15 p.m.0 views

d8s-archives (>=0.2.0 <=0.7.0), d8s-asns (>=0.2.0 <=0.7.0) +13 more potentially affected by CVE-2022-42041 via d8s-file-system (=0.10.0)

d8s-file-system PYPI version =0.10.0 is affected by a known vulnerability. The following packages have a transitive dependency on d8s-file-system and may be impacted: - d8s-archives =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.4.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0,...

9.8CVSS7.2AI score0.00474EPSS
Exploits1
CNNVD
CNNVDadded 2022/10/11 12:0 a.m.2 views

Democritus Project 代码问题漏洞

Democritus Project is a collection of simple, effective, modular, well-tested and well-documented features from Democritus. A backdoor vulnerability exists in Democritus Project d8s-archives version 0.1.0, which stems from the presence of a potential code execution package democritus-file-system...

9.8CVSS9.3AI score0.00474EPSS
Exploits1References4
Cvelist
Cvelistadded 2022/10/11 12:0 a.m.13 views

CVE-2022-41383

The d8s-archives package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-file-system package. The affected version is 0.1.0...

9.8AI score0.00474EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2022/10/11 12:0 a.m.19 views

PT-2022-25834 · Pypi · D8S-Archives +1

Name of the Vulnerable Software and Affected Versions: d8s-archives version 0.1.0 Description: The d8s-archives package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-file-system package. Recommendations:...

9.8CVSS9.6AI score0.00474EPSS
Exploits1References8
Vulnrichment
Vulnrichmentadded 2022/10/11 12:0 a.m.6 views

CVE-2022-41383

The d8s-archives package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-file-system package. The affected version is 0.1.0...

6.8AI score0.00474EPSS
Exploits1References3
Veracode
Veracodeadded 2022/09/20 5:57 a.m.18 views

Arbitrary Code Execution

d8s-archives is vulnerable to arbitrary code execution. The vulnerability exists because the democritus-strings package of a specific version of d8s-archives acts as a potential code execution backdoor which allows an attacker to inject and execute malicious codes in to the system...

9.8CVSS9.6AI score0.00796EPSS
Exploits1References5Affected Software1
ATTACKERKB
ATTACKERKBadded 2022/09/19 4:15 p.m.3 views

CVE-2022-38881

The d8s-archives for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. The affected version is 0.1.0...

9.8CVSS5.8AI score0.00796EPSS
Exploits1References4
OSV
OSVadded 2022/09/19 4:15 p.m.2 views

PYSEC-2022-43074

The d8s-archives for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. The affected version is 0.1.0...

9.8CVSS7.2AI score
Exploits0References3
PyPA
PyPAadded 2022/09/19 4:15 p.m.8 views

PYSEC-2022-43119

The d8s-archives for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. The affected version is 0.1.0...

9.8CVSS7AI score0.00796EPSS
Exploits1References4Affected Software1
vulnersOsv
vulnersOsvadded 2022/09/19 3:15 p.m.1 views

d8s-archives (=0.1.0), d8s-json (=0.1.0) +4 more potentially affected by unknown CVE via democritus-file-system (=2021.1.2701)

democritus-file-system PYPI version =2021.1.2701 is affected by a known vulnerability. The following packages have a transitive dependency on democritus-file-system and may be impacted: - d8s-archives =0.1.0 - d8s-json =0.1.0 - d8s-pdfs =0.1.0 - d8s-urls =0.1.0 - d8s-utility =0.1.0 - d8s-yaml...

5.8AI score
Exploits0
Positive Technologies
Positive Technologiesadded 2022/09/19 12:0 a.m.1 views

PT-2022-37337 · Pypi · D8S-Archives +1

Name of the Vulnerable Software and Affected Versions: d8s-archives version 0.1.0 Description: The d8s-archives for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. Recommendations: For version...

9.8CVSS7.4AI score
Exploits0References4
Positive Technologies
Positive Technologiesadded 2022/09/19 12:0 a.m.3 views

PT-2022-24606 · Pypi · D8S-Archives +1

Name of the Vulnerable Software and Affected Versions: d8s-archives version 0.1.0 Description: The d8s-archives for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. Recommendations: For version...

9.8CVSS9.7AI score0.00796EPSS
Exploits1References7
Positive Technologies
Positive Technologiesadded 2022/09/19 12:0 a.m.1 views

PT-2022-37382 · Pypi · D8S-Archives +1

Name of the Vulnerable Software and Affected Versions: d8s-archives version 0.1.0 Description: The d8s-archives for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. Recommendations: For version...

9.8CVSS6.9AI score
Exploits0References4
Rows per page
Query Builder