CVE-2022-34558

Code Injection in pypi/wmcore

Identifiers

CVE-2022-34558

Package Slug

pypi/wmcore

Vulnerability

Code Injection

Description

WMAgent v1.3.3rc2 and 1.3.3rc1, reqmgr 2 1.4.1rc5 and 1.4.0rc2, reqmon 1.4.1rc5, and global-workqueue 1.4.1rc5 allows attackers to execute arbitrary code via a crafted dbs-client package.

Affected Versions

Version 1.4.1

Solution

Upgrade to version 2.0.4 or above.

Last Modified

2022-08-05

source