CVE-2024-23346 | materialsproject pymatgen prior 2024.2.20 from_transformation_str command injection

Inserito da Angelo Barbosa | Feb 21, 2024 | CVE

A vulnerability was found in materialsproject pymatgen. It has been rated as critical. Affected by this issue is the function from_transformation_str. The manipulation leads to command injection.

This vulnerability is handled as CVE-2024-23346. The attack needs to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-23346 | materialsproject pymatgen prior 2024.2.20 from_transformation_str command injection

Post correlati

CVE-2023-52717 | Huawei HarmonyOS/EMUI Lock Screen Module permission

CVE-2023-47505 | Elementor Elementor Plugin up to 3.16.4 on WordPress Elementor.Com cross site scripting

CVE-2024-2121 | Elementor Website Builder Pro Plugin up to 3.20.1 on WordPress cross site scripting

CVE-2023-43516 | Qualcomm WSA8835 Message memory corruption