CVE-2022-34054

Published
View on NVD ↗
CVSS v3
9.8
CRITICAL
CVSS v2
7.5
HIGH
Affected
2
PROJECTS

Description

The Perdido package in PyPI v0.0.1 to v0.0.2 was discovered to contain a code execution backdoor via the request package. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges.

perdido
perdido
PERDIDO Geoparser python library
Python Package IndexPython Package Index
ludovicmoncla/perdido
ludovicmoncla/perdido
Perdido is a python text geoparser. It provides NLP and GIS methods for geoparsing French texts.
GitHubGitHub
9