CVE-2022-30284

In the python-libnmap package through 0.7.2 for Python, remote command execution can occur (if used in a client application that does not validate arguments).
References
Link Resource
https://github.com/savon-noir/python-libnmap/releases Release Notes Third Party Advisory
https://www.swascan.com/security-advisory-libnmap-2/ Exploit Mitigation Third Party Advisory
https://pypi.org/project/python-libnmap/ Product Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:python-libnmap_project:python-libnmap:*:*:*:*:*:python:*:*

History

13 May 2022, 18:25

Type Values Removed Values Added
References (MISC) https://github.com/savon-noir/python-libnmap/releases - (MISC) https://github.com/savon-noir/python-libnmap/releases - Release Notes, Third Party Advisory
References (MISC) https://pypi.org/project/python-libnmap/ - (MISC) https://pypi.org/project/python-libnmap/ - Product, Third Party Advisory
References (MISC) https://www.swascan.com/security-advisory-libnmap-2/ - (MISC) https://www.swascan.com/security-advisory-libnmap-2/ - Exploit, Mitigation, Third Party Advisory
CVSS v2 : unknown
v3 : unknown
v2 : 7.5
v3 : 9.8
CWE CWE-88
First Time Python-libnmap Project python-libnmap
Python-libnmap Project
CPE cpe:2.3:a:python-libnmap_project:python-libnmap:*:*:*:*:*:python:*:*

04 May 2022, 22:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-05-04 22:15

Updated : 2022-05-13 18:25


NVD link : CVE-2022-30284

Mitre link : CVE-2022-30284


JSON object : View

Products Affected

python-libnmap_project

  • python-libnmap
CWE
CWE-88

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')