Vulnerabilities > CVE-2022-30882 - Unspecified vulnerability in Pyanxdns Project Pyanxdns 0.2

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

pyanxdns-project

critical

NVD

Published: 2022-06-08

Updated: 2024-11-21

Summary

pyanxdns package in PyPI version 0.2 is vulnerable to code execution backdoor. The impact is: execute arbitrary code (remote). When installing the pyanxdns package of version 0.2, the request package will be installed.

Vulnerable Configurations

Part	Description	Count
Application	Pyanxdns_Project Pyanxdns Project Pyanxdns 0.2	1

References

http://pypi.doubanio.com/simple/request
http://pypi.doubanio.com/simple/request
https://github.com/egeback/pyanxdns/issues/1
https://github.com/egeback/pyanxdns/issues/1
https://pypi.org/project/pyanxdns/
https://pypi.org/project/pyanxdns/