Lucene search
China National Vulnerability DatabaseCNVD-2022-89100HistoryOct 13, 2022 - 12:00 a.m.
Democritus Project d8s-asns democritus-html code execution vulnerability
2022-10-1300:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
democritus project
d8s-asns
code execution
vulnerability
pypi
backdoor
democritus-html
remote code execution
EPSS
0.005
Percentile
75.6%
Democritus Project is a collection of simple, effective, modular, well-tested and well-documented features from Democritus. d8s-asns version 0.1.0 of Democritus Project is vulnerable to a backdoor vulnerability that stems from the presence of a potential code execution package, democritus-html, inserted by a third party in d8s-asns distributed on PyPI , an attacker can exploit the vulnerability to remotely execute code.
Related
cve
cve
CVE-2022-42044
2022-10-11 22:15:12
prion
prion
Code injection
2022-10-11 22:15:00
nvd
nvd
CVE-2022-42044
2022-10-11 22:15:12
osv
osv
PYSEC-2022-43022
2022-10-11 22:15:00
PYSEC-2022-43046
2022-10-11 22:15:00
CVE-2022-42044
2022-10-11 22:15:12
cvelist
cvelist
CVE-2022-42044
2022-10-11 00:00:00