Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:57 a.m.4 views

CVE-2022-38884

The d8s-grammars for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. The affected version is 0.1.0...

9.8CVSS6.9AI score0.01238EPSS
Exploits1References1
CNVD
CNVD
added 2022/09/21 12:0 a.m.10 views

Democritus Project d8s-grammars Code Execution Vulnerability

Democritus Project is a collection of simple, effective, modular, well-tested and well-documented features from Democritus. A code execution vulnerability exists in Democritus Project version 0.1.0, which stems from a potential code execution backdoor in d8s-grammars inserted by a third party,...

9.8CVSS7.8AI score0.01238EPSS
Exploits1References1
Veracode
Veracode
added 2022/09/20 5:14 a.m.18 views

Remote Code Execution (RCE)

d8s-grammars is vulnerable to remote code execution. The vulnerability exists because the library does not properly handle the package upload mechanism, allowing an attacker to inject and execute malicious packages...

9.8CVSS9.7AI score0.01238EPSS
Exploits1References4Affected Software1
PyPA
PyPA
added 2022/09/19 4:15 p.m.7 views

PYSEC-2022-43122

The d8s-grammars for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. The affected version is 0.1.0...

9.8CVSS7AI score0.01238EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2022/09/19 4:15 p.m.3 views

PYSEC-2022-43122

The d8s-grammars for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. The affected version is 0.1.0...

9.8CVSS7.2AI score
Exploits0References3
OSV
OSV
added 2022/09/19 4:15 p.m.2 views

PYSEC-2022-43076

The d8s-grammars for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. The affected version is 0.1.0...

9.8CVSS5.9AI score
Exploits0References3
CNNVD
CNNVD
added 2022/09/19 12:0 a.m.5 views

Democritus Project 代码问题漏洞

Democritus Project is a collection of simple, effective, modular, well-tested and well-documented features from Democritus. A code execution vulnerability exists in Democritus Project version 0.1.0, which stems from a potential code execution backdoor in d8s-grammars inserted by a third party,...

9.8CVSS8.3AI score0.01238EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/09/19 12:0 a.m.9 views

PT-2022-24609 · Unknown · Democritus-Strings +1

Name of the Vulnerable Software and Affected Versions: d8s-grammars version 0.1.0 Description: The d8s-grammars for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. Recommendations: For version...

9.8CVSS9.6AI score0.01238EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2022/09/19 12:0 a.m.2 views

PT-2022-37385 · Pypi · D8S-Grammars +1

Name of the Vulnerable Software and Affected Versions: d8s-grammars version 0.1.0 Description: The d8s-grammars package for python, distributed on PyPI, contains a potential code-execution backdoor. This backdoor is inserted through the democritus-strings package. Recommendations: For version...

9.8CVSS7.7AI score
Exploits0References4
Rows per page
Query Builder