CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-34057

The Scoptrial package in PyPI version v0.0.5 was discovered to contain a code execution backdoor via the request package. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.9%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

http://pypi.doubanio.com/simple/request
https://pypi.org/project/scoptrial/
http://pypi.doubanio.com/simple/request
https://pypi.org/project/scoptrial/

Products affected by CVE-2022-34057

Scoptrial Project » Scoptrial » Version: 0.0.5

cpe:2.3:a:scoptrial_project:scoptrial:0.0.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-34057

Products

Pricing

Contact Us