CVE-2022-21797
pypi/joblib
Improper Control of Generation of Code
The package joblib before version 1.2.0 is vulnerable to Arbitrary Code Execution via the pre_dispatch flag in Parallel() class due to the eval() statement.
All versions before 1.1.1
Upgrade to version 1.1.1 or above.
2022-09-27
source |