13 matches found
EUVD-2022-0377
Malicious code in bioql PyPI...
CVE-2022-44049
The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-grammars package. The affected version of d8s-htm is 0.1.0...
CVE-2022-44049
The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-grammars package. The affected version of d8s-htm is 0.1.0...
PYSEC-2022-43100
The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-grammars package. The affected version of d8s-htm is 0.1.0...
Code injection
The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-grammars package. The affected version of d8s-htm is 0.1.0...
PYSEC-2022-43100
The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-grammars package. The affected version of d8s-htm is 0.1.0...
PYSEC-2022-43085
The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-grammars package. The affected version of d8s-htm is 0.1.0...
Malicious Package
Overview democritus-grammars is a malicious package. This package is used for dependency confusion attempts and contains malicious code. The package now exists as a placeholder on PyPI. Remediation Avoid using all malicious instances of the democritus-grammars package. References - GitHub Issue...
PT-2022-37348 · Unknown +2 · Democritus-Grammars +2
Name of the Vulnerable Software and Affected Versions: d8s-htm version 0.1.0 democritus-grammars affected versions not specified Description: A potential code-execution backdoor was inserted by a third party into the d8s-python package distributed on PyPI. The democritus-grammars package also...
CVE-2022-44049
The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-grammars package. The affected version of d8s-htm is 0.1.0...
PT-2022-37363 · Unknown +2 · Democritus-Grammars +2
Name of the Vulnerable Software and Affected Versions: d8s-htm version 0.1.0 democritus-grammars affected versions not specified Description: A potential code-execution backdoor was inserted by a third party into the d8s-python package distributed on PyPI. The democritus-grammars package also...
PT-2022-27090 · D8S-Htm +2 · D8S-Htm +2
Name of the Vulnerable Software and Affected Versions: d8s-htm version 0.1.0 Description: The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the...
CVE-2022-44049
CVE-2022-44049 concerns the PyPI package d8s-python for Python, with version 0.1.0 affected. The root cause is a suspected backdoor introduced by a third party via the democritus-grammars package, enabling potential code execution. Several connected sources corroborate a code-execution risk in th...