Critical Infrastructure Sectors: Critical Manufacturing
In Python 3.6 up to and including 3.6.10, 3.7 up to and including 3.7.8, 3.8 up to and including 3.8.4rc1, and 3.9 up to and including 3.9.0b4 on Windows, a Trojan horse python3.dll might be used in cases where CPython is embedded in a native application. This occurs because python3X.dll may use an invalid search path for python3.dll loading (after Py_SetPath has been used). NOTE: this issue CANNOT occur when using python.exe from a standard (non-embedded) Python installation on Windows.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
python python 3.9.0 |
||
python python |
||
python python 3.8.4 |
||
netapp snapcenter - |