Vulnerabilities (CVE)

Filtered by vendor Rdflib Project Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-7653 3 Canonical, Debian, Rdflib Project 3 Ubuntu Linux, Debian Linux, Rdflib 2024-11-21 7.5 HIGH 9.8 CRITICAL
The Debian python-rdflib-tools 4.2.2-1 package for RDFLib 4.2.2 has CLI tools that can load Python modules from the current working directory, allowing code injection, because "python -m" looks in this directory, as demonstrated by rdf2dot. This issue is specific to use of the debian/scripts directory.