An incomplete string comparison in the numpy.core component in NumPy prior to 1.22.0 allows malicious users to trigger slightly incorrect copying by constructing specific string objects. NOTE: the vendor states that this reported code behavior is "completely harmless."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
numpy numpy |
||
oracle communications cloud native core policy 22.1.3 |