Описание
The tqdm._version module in tqdm versions 4.4.1 and 4.10 allows local users to execute arbitrary code via a crafted repo with a malicious git log in the current working directory.
Ссылки
- Mailing ListThird Party Advisory
- Third Party AdvisoryVDB Entry
- Issue TrackingVendor Advisory
- Mailing ListThird Party Advisory
- Third Party AdvisoryVDB Entry
- Issue TrackingVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:tqdm_project:tqdm:4.4.1:*:*:*:*:*:*:*
cpe:2.3:a:tqdm_project:tqdm:4.10:*:*:*:*:*:*:*
EPSS
Процентиль: 26%
0.00088
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-17
Связанные уязвимости
CVSS3: 7.8
ubuntu
около 9 лет назад
The tqdm._version module in tqdm versions 4.4.1 and 4.10 allows local users to execute arbitrary code via a crafted repo with a malicious git log in the current working directory.
CVSS3: 7.8
debian
около 9 лет назад
The tqdm._version module in tqdm versions 4.4.1 and 4.10 allows local ...
EPSS
Процентиль: 26%
0.00088
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-17