CVE-2022-38882

The CVE-2022-38882 issue affects the Python package d8s-json distributed on PyPI, with the vulnerable version identified as 0.1.0. Multiple connected sources describe a third-party backdoor in the package, specifically the democritus-strings component, which enables potential remote code executio...

CVE-2022-38882

The d8s-json for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. The affected version is 0.1.0...

CVE-2022-38881

CVE-2022-38881 affects the Python package d8s-archives distributed on PyPI. The vulnerability is caused by a backdoor (the democritus-strings package) inserted by a third party, with the affected version reported as 0.1.0. Public documents describe potential code execution as the impact and note ...

CVE-2022-38881

The d8s-archives for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. The affected version is 0.1.0...

d8s-strings (=0.1.0), d8s-timer (=0.1.0) potentially affected by unknown CVE via democritus-uuids (=2021.1.2101)

democritus-uuids PYPI version =2021.1.2101 is affected by a known vulnerability. The following packages have a transitive dependency on democritus-uuids and may be impacted: - d8s-strings =0.1.0 - d8s-timer =0.1.0 Source cves: unknown CVE Source advisory: SNYK:PYTHON-DEMOCRITUSUUIDS-8400829...

d8s-dates (=0.1.0), d8s-dicts (=0.1.0) +5 more potentially affected by unknown CVE via democritus-hypothesis (=2021.1.2101)

democritus-hypothesis PYPI version =2021.1.2101 is affected by a known vulnerability. The following packages have a transitive dependency on democritus-hypothesis and may be impacted: - d8s-dates =0.1.0 - d8s-dicts =0.1.0 - d8s-domains =0.1.0 - d8s-ip-addresses =0.1.0 - d8s-strings =0.1.0 -...

PT-2022-24607 · Pypi · Democritus-Strings +1

Name of the Vulnerable Software and Affected Versions: d8s-json version 0.1.0 Description: The d8s-json for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. Recommendations: For version 0.1.0,...

PT-2022-24609 · Unknown · Democritus-Strings +1

Name of the Vulnerable Software and Affected Versions: d8s-grammars version 0.1.0 Description: The d8s-grammars for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. Recommendations: For version...

Democritus Project 代码问题漏洞

Democritus Project is a collection of simple, effective, modular, fully tested and well-documented features from Democritus, Inc. A security vulnerability exists in Democritus Project d8s-math version 0.1.0, which stems from the presence of a potential code execution backdoor inserted by a third...

Democritus Project 代码问题漏洞

Democritus Project is a collection of simple, effective, modular, fully tested and well-documented features from Democritus, Inc. A security vulnerability exists in Democritus Project d8s-archives version 0.1.0, which stems from the presence of a potential code execution backdoor inserted by a...

Democritus Project 代码问题漏洞

Democritus Project is a collection of simple, effective, modular, fully tested and well-documented features from Democritus, Inc. A security vulnerability exists in Democritus Project d8s-json version 0.1.0, which stems from the presence of a potential code execution backdoor inserted by a third...

Democritus Project 代码问题漏洞

Democritus Project is a collection of simple, effective, modular, fully tested and well-documented features from Democritus, Inc. A security vulnerability exists in Democritus Project d8s-xml version 0.1.0, which stems from the presence of a potential code execution backdoor inserted by a third...

Democritus Project 代码问题漏洞

Democritus Project is a collection of simple, effective, modular, fully tested and well-documented features from Democritus. A security vulnerability exists in Democritus Project d8s-netstrings version 0.1.0, which stems from the presence of a potential code execution backdoor inserted by a third...

Democritus Project 代码问题漏洞

Democritus Project is a collection of simple, effective, modular, fully tested and well-documented features from Democritus, Inc. A security vulnerability exists in Democritus Project d8s-python version 0.1.0, which stems from the presence of a potential code execution backdoor inserted by a thir...

Democritus Project 代码问题漏洞

Democritus Project is a collection of simple, effective, modular, fully tested and well-documented features from Democritus, Inc. A security vulnerability exists in Democritus Project d8s-strings version 0.1.0 that originates from a potential code execution backdoor inserted by a third party...

PT-2022-37355 · Pypi · D8S-Xml +1

Name of the Vulnerable Software and Affected Versions: d8s-xml version 0.1.0 Description: The d8s-xml for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. Recommendations: For version 0.1.0, avo...

PT-2022-24611 · Pypi · Democritus-Strings +1

Name of the Vulnerable Software and Affected Versions: d8s-xml versions 0.1.0 Description: The d8s-xml for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. Recommendations: For version 0.1.0,...

PT-2022-24612 · Pypi · Democritus-Strings +1

Name of the Vulnerable Software and Affected Versions: d8s-python version 0.1.0 Description: The d8s-python package for python, distributed on PyPI, contains a potential code-execution backdoor inserted by a third party, specifically affecting the democritus-strings package. Recommendations: For...

PT-2022-24608 · Unknown +1 · Democritus-Strings +1

Name of the Vulnerable Software and Affected Versions: d8s-math version 0.1.0 Description: The d8s-math for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. Recommendations: For version 0.1.0,...

PT-2022-37337 · Pypi · D8S-Archives +1

Name of the Vulnerable Software and Affected Versions: d8s-archives version 0.1.0 Description: The d8s-archives for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. Recommendations: For version...