Vulnerability CVE-2022-42039


Published: 2022-10-11   Modified: 2022-10-12

Description:
The d8s-lists package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-dicts package. The affected version is 0.1.0.

 References:
https://pypi.org/project/democritus-dicts/
https://github.com/democritus-project/d8s-lists/issues/18
https://pypi.org/project/d8s-lists/

Copyright 2026, cxsecurity.com

 

Back to Top