Vulnerabilities > CVE-2022-34066 - Unspecified vulnerability in Texercise Project Texercise

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

texercise-project

NVD

Published: 2022-06-24

Updated: 2022-07-06

Summary

The Texercise package in PyPI v0.0.1 to v0.0.12 was discovered to contain a code execution backdoor. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges.

Vulnerable Configurations

Part	Description	Count
Application	Texercise_Project Texercise Project Texercise *	1

References

http://pypi.doubanio.com/simple/request
https://github.com/rasmushaugaard/texercise-cli/issues/1
https://pypi.org/project/texercise/