CVE-2024-6345 | pypa setuptools up to 69.1.1 package_index code injection

Posted by Angelo Barbosa | Jul 15, 2024 | CVE

A vulnerability has been found in pypa setuptools up to 69.1.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the component package_index. The manipulation leads to code injection.

This vulnerability is known as CVE-2024-6345. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-6345 | pypa setuptools up to 69.1.1 package_index code injection

Related Posts

CVE-2024-7500 | itsourcecode Airline Reservation System 1.0 admin/admin_class.php save_settings img unrestricted upload

CVE-2024-27034 | Linux Kernel up to 5.15.152/6.1.82/6.6.22/6.7.10/6.8.1 compress f2fs_write_raw_pages memory corruption

CVE-2024-27793 | Apple iTunes up to 12.13.1 on Windows Remote Code Execution (HT214099)

CVE-2024-34575 | deTheme DethemeKit for Elementor Plugin up to 2.1.2 on WordPress cross site scripting