EUVD-2022-0061

Malicious code in bioql PyPI...

CVE-2022-42039

The d8s-lists package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-dicts package. The affected version is 0.1.0...

Democritus Project d8s-lists Code Execution Vulnerability

Democritus Project is a collection of simple, effective, modular, well-tested and well-documented features from Democritus. A backdoor vulnerability exists in Democritus Project d8s-lists version 0.1.0, which stems from the presence of a potential code execution package, democritus-dicts, inserte...

CVE-2022-42039

The d8s-lists package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-dicts package. The affected version is 0.1.0...

PYSEC-2022-43027

The d8s-lists package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-dicts package. The affected version is 0.1.0...

cy-ioc-finder (>=7.2.3 <=7.2.13), d8s-archives (>=0.2.0 <=0.7.0) +25 more potentially affected by CVE-2022-42039 via d8s-lists (>=0.3.0 <=0.8.0)

d8s-lists PYPI version =0.3.0, =7.2.3, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.6.0, =0.2.0, =0.2.0, =0.2.0, =0.1.2, =0.2.0, =0.6.0 and more Source cves: CVE-2022-42039 Source advisory: OSV:PYSEC-2022-43027...

PYSEC-2022-43027

The d8s-lists package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-dicts package. The affected version is 0.1.0...

CVE-2022-42039

The d8s-lists package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-dicts package. The affected version is 0.1.0...

CVE-2022-42039

The CVE-2022-42039 entry concerns the Python package d8s-lists (PyPI) with a backdoor inserted by a third party: the democritus-dicts package, affecting version 0.1.0. According to connected sources, this allows potential code execution if the compromised package is installed. The CVSSv3.1 base s...

Democritus Project 代码问题漏洞

Democritus Project is a collection of simple, effective, modular, well-tested and well-documented features from Democritus. A backdoor vulnerability exists in Democritus Project d8s-lists version 0.1.0, which stems from the presence of a potential code execution package, democritus-dicts, inserte...

PT-2022-26215 · Pypi · D8S-Lists +1

Name of the Vulnerable Software and Affected Versions: d8s-lists version 0.1.0 Description: The d8s-lists package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-dicts package. Recommendations: For version...