Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2022-10-11	CVE-2022-41380	Unrestricted Upload of File with Dangerous Type vulnerability in Democritus D8S-Yaml 0.1.0 The d8s-yaml package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. network low complexity democritus CWE-434 critical	9.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.