Vulnerabilities > Pypi > High

DATE CVE VULNERABILITY TITLE RISK
2022-06-24 CVE-2022-34054 Unspecified vulnerability in Pypi Perdido
The Perdido package in PyPI v0.0.1 to v0.0.2 was discovered to contain a code execution backdoor via the request package.
network
low complexity
pypi
7.5
7.5
2022-06-24 CVE-2022-34055 Unspecified vulnerability in Pypi Drxhello 0.0.1
The drxhello package in PyPI v0.0.1 was discovered to contain a code execution backdoor via the request package.
network
low complexity
pypi
7.5
7.5
2022-06-24 CVE-2022-34056 Unspecified vulnerability in Pypi Watertools 0.0.0
The Watertools package in PyPI v0.0.0 was discovered to contain a code execution backdoor via the request package.
network
low complexity
pypi
7.5
7.5
2020-07-22 CVE-2020-15904 Out-of-bounds Write vulnerability in Pypi Bsdiff4
A buffer overflow in the patching routine of bsdiff4 before 1.2.0 allows an attacker to write to heap memory (beyond allocated bounds) via a crafted patch file.
local
low complexity
pypi CWE-787
7.8
7.8