Lucene search
+L

13 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-0377

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01012EPSS
Exploits0References3
NVD
NVD
added 2022/11/07 3:15 p.m.31 views

CVE-2022-44049

The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-grammars package. The affected version of d8s-htm is 0.1.0...

9.8CVSS0.01012EPSS
Exploits0References3
OSV
OSV
added 2022/11/07 3:15 p.m.8 views

CVE-2022-44049

The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-grammars package. The affected version of d8s-htm is 0.1.0...

9.8CVSS6.2AI score0.01012EPSS
Exploits0References3
OSV
OSV
added 2022/11/07 3:15 p.m.5 views

PYSEC-2022-43100

The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-grammars package. The affected version of d8s-htm is 0.1.0...

9.8CVSS7.7AI score
Exploits0References3
Prion
Prion
added 2022/11/07 3:15 p.m.14 views

Code injection

The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-grammars package. The affected version of d8s-htm is 0.1.0...

7.5CVSS9.6AI score0.01012EPSS
Exploits0References3Affected Software1
PyPA
PyPA
added 2022/11/07 3:15 p.m.7 views

PYSEC-2022-43100

The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-grammars package. The affected version of d8s-htm is 0.1.0...

9.8CVSS7.6AI score0.01012EPSS
Exploits0References3Affected Software1
PyPA
PyPA
added 2022/11/07 3:15 p.m.7 views

PYSEC-2022-43085

The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-grammars package. The affected version of d8s-htm is 0.1.0...

9.8CVSS7.6AI score0.01012EPSS
Exploits0References3Affected Software1
Snyk
Snyk
added 2022/11/07 3:15 p.m.1 views

Malicious Package

Overview democritus-grammars is a malicious package. This package is used for dependency confusion attempts and contains malicious code. The package now exists as a placeholder on PyPI. Remediation Avoid using all malicious instances of the democritus-grammars package. References - GitHub Issue...

9.8CVSS6.9AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/11/07 12:0 a.m.1 views

PT-2022-37348 · Unknown +2 · Democritus-Grammars +2

Name of the Vulnerable Software and Affected Versions: d8s-htm version 0.1.0 democritus-grammars affected versions not specified Description: A potential code-execution backdoor was inserted by a third party into the d8s-python package distributed on PyPI. The democritus-grammars package also...

9.8CVSS7.6AI score
Exploits0References4
Cvelist
Cvelist
added 2022/11/07 12:0 a.m.40 views

CVE-2022-44049

The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-grammars package. The affected version of d8s-htm is 0.1.0...

9.9AI score0.01012EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/11/07 12:0 a.m.3 views

PT-2022-37363 · Unknown +2 · Democritus-Grammars +2

Name of the Vulnerable Software and Affected Versions: d8s-htm version 0.1.0 democritus-grammars affected versions not specified Description: A potential code-execution backdoor was inserted by a third party into the d8s-python package distributed on PyPI. The democritus-grammars package also...

9.8CVSS7.5AI score
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/11/07 12:0 a.m.9 views

PT-2022-27090 · D8S-Htm +2 · D8S-Htm +2

Name of the Vulnerable Software and Affected Versions: d8s-htm version 0.1.0 Description: The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the...

9.8CVSS9.6AI score0.01012EPSS
Exploits0References6
CVE
CVE
added 2022/11/07 12:0 a.m.59 views

CVE-2022-44049

CVE-2022-44049 concerns the PyPI package d8s-python for Python, with version 0.1.0 affected. The root cause is a suspected backdoor introduced by a third party via the democritus-grammars package, enabling potential code execution. Several connected sources corroborate a code-execution risk in th...

9.8CVSS9.7AI score0.01012EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder