Improper Control of Generation of Code
The package joblib before version 1.2.0 is vulnerable to Arbitrary Code Execution via the pre_dispatch flag in Parallel() class due to the eval() statement.
Advisories for Pypi/Joblib package
2022
The package joblib before version 1.2.0 is vulnerable to Arbitrary Code Execution via the pre_dispatch flag in Parallel() class due to the eval() statement.