exploitDog

GHSA-3mmm-g63g-fr84

Опубликовано: 25 июн. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

The Sixfab-Tool in PyPI v0.0.2 to v0.0.3 was discovered to contain a code execution backdoor via the request package. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges.

The Sixfab-Tool in PyPI v0.0.2 to v0.0.3 was discovered to contain a code execution backdoor via the request package. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges.

Ссылки

EPSS

Процентиль: 72%

0.00734

Низкий

9.8 Critical

CVSS3

CVE ID

Связанные уязвимости

CVE-2022-34059

CVSS3: 9.8

nvd

больше 3 лет назад

The Sixfab-Tool in PyPI v0.0.2 to v0.0.3 was discovered to contain a code execution backdoor via the request package. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges.

EPSS

Процентиль: 72%

0.00734

Низкий

9.8 Critical

CVSS3

CVE ID