EUVD-2024-1306

Malicious code in bioql PyPI...

EUVD-2024-0200

Malicious code in bioql PyPI...

CVE-2024-24825

DIRAC is a distributed resource framework. In affected versions any user could get a token that has been requested by another user/agent. This may expose resources to unintended parties. This issue has been addressed in release version 8.0.37. Users are advised to upgrade. There are no known...

comdirac (>=0.22.0 <=1.3.3), ctadirac (>=2.0.0 <=2.2.46) +3 more potentially affected by CVE-2024-29905 via dirac (>=7.2.30 <=8.0.40)

dirac PYPI version =7.2.30, =0.22.0, =2.0.0, =33.0.0a1, =10.2.5, =10.4.23 - lhcbwebdirac =5.3.0a2 Source cves: CVE-2024-29905 Source advisory: OSV:GHSA-V6F3-GH5H-MQWX...

comdirac (>=0.22.0 <=1.3.3), ctadirac (>=2.0.0 <=2.2.35) +3 more potentially affected by CVE-2024-24825 via dirac (>=7.2.30 <=8.0.30)

dirac PYPI version =7.2.30, =0.22.0, =2.0.0, =33.0.0a1, =10.2.5, =10.4.23 - lhcbwebdirac =5.3.0a2 Source cves: CVE-2024-24825 Source advisory: OSV:PYSEC-2024-125...

comdirac (>=0.22.0 <=1.3.3), ctadirac (>=2.0.0 <=2.2.35) +3 more potentially affected by CVE-2024-24825 via dirac (>=7.2.30 <=8.0.30)

dirac PYPI version =7.2.30, =0.22.0, =2.0.0, =33.0.0a1, =10.2.5, =10.4.23 - lhcbwebdirac =5.3.0a2 Source cves: CVE-2024-24825 Source advisory: OSV:GHSA-59QJ-JCJV-662J...