CVE-2022-21797

Опубликовано: 26 сент. 2022

Источник: ubuntu

Приоритет: medium

CVSS3: 7.3

Описание

The package joblib from 0 and before 1.2.0 are vulnerable to Arbitrary Code Execution via the pre_dispatch flag in Parallel() class due to the eval() statement.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	not-affected	1.2.0-4
esm-apps/bionic	needs-triage
esm-apps/focal	needs-triage
esm-apps/jammy	needs-triage
esm-apps/noble	not-affected	1.2.0-4
esm-apps/xenial	needs-triage
esm-infra-legacy/trusty	needs-triage
focal	ignored	end of standard support, was needs-triage
jammy	needs-triage

Показывать по

Ссылки на источники

7.3 High

CVSS3

Связанные уязвимости

CVE-2022-21797

CVSS3: 7.3

nvd

больше 3 лет назад

The package joblib from 0 and before 1.2.0 are vulnerable to Arbitrary Code Execution via the pre_dispatch flag in Parallel() class due to the eval() statement.

CVE-2022-21797

CVSS3: 7.3

debian

больше 3 лет назад

The package joblib from 0 and before 1.2.0 are vulnerable to Arbitrary ...

openSUSE-SU-2022:10214-1

suse-cvrf

около 3 лет назад

Security update for python-joblib

GHSA-6hrg-qmvc-2xh8

CVSS3: 9.8

github

больше 3 лет назад

joblib vulnerable to arbitrary code execution

7.3 High

CVSS3

CVE-2022-21797

Описание

Пакет joblib

Ссылки на источники

Связанные уязвимости