Vulnerabilities > Anaconda
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-11 | CVE-2023-35845 | Improper Certificate Validation vulnerability in Anaconda Anaconda3 2023.031 Anaconda 3 2023.03-1-Linux allows local users to disrupt TLS certificate validation by modifying the cacert.pem file used by the installed pip program. | 4.7 |
| 2022-05-13 | CVE-2021-42969 | OS Command Injection vulnerability in Anaconda Anaconda3 2021.05 Certain Anaconda3 2021.05 are affected by OS command injection. | 8.8 |
| 2022-03-17 | CVE-2022-26526 | Incorrect Permission Assignment for Critical Resource vulnerability in multiple products Anaconda Anaconda3 (Anaconda Distribution) through 2021.11.0.0 and Miniconda3 through 4.11.0.0 can create a world-writable directory under %PROGRAMDATA% and place that directory into the system PATH environment variable. | 7.8 |
| 2021-10-26 | CVE-2021-42343 | Unspecified vulnerability in Anaconda Dask An issue was discovered in the Dask distributed package before 2021.10.0 for Python. | 9.8 |