CVE-2022-40432
CVE-2022-40432 concerns the d8s-strings Python package (version 0.1.0) distributed on PyPI, where a third-party backdoor named democritus-hypothesis was inserted, enabling potential code execution. The issue is documented across multiple sources (including Red Hat, NVD, OSV, and Veracode referenc...