Skip to main content

Anaconda3

2 CVEs product

Monthly

CVE-2023-35845 MEDIUM POC This Month

Anaconda 3 2023.03-1-Linux allows local users to disrupt TLS certificate validation by modifying the cacert.pem file used by the installed pip program. Rated medium severity (CVSS 4.7). Public exploit code available and no vendor patch available.

Information Disclosure Anaconda3
NVD
CVSS 3.1
4.7
EPSS
0.1%
CVE-2022-26526 HIGH POC This Week

Anaconda Anaconda3 (Anaconda Distribution) through 2021.11.0.0 and Miniconda3 through 4.11.0.0 can create a world-writable directory under %PROGRAMDATA% and place that directory into the system PATH. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Anaconda3 Miniconda3
NVD GitHub
CVSS 3.1
7.8
EPSS
0.3%
EPSS 0% CVSS 4.7
MEDIUM POC This Month

Anaconda 3 2023.03-1-Linux allows local users to disrupt TLS certificate validation by modifying the cacert.pem file used by the installed pip program. Rated medium severity (CVSS 4.7). Public exploit code available and no vendor patch available.

Information Disclosure Anaconda3
NVD
EPSS 0% CVSS 7.8
HIGH POC This Week

Anaconda Anaconda3 (Anaconda Distribution) through 2021.11.0.0 and Miniconda3 through 4.11.0.0 can create a world-writable directory under %PROGRAMDATA% and place that directory into the system PATH. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Anaconda3 Miniconda3
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy