Dependabot
1 CVEs
product
Monthly
Dependabot is a set of packages for automated dependency management for Ruby, JavaScript, Python, PHP, Elixir, Rust, Java, .NET, Elm and Go. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.
RCE
Python
Dependabot
NVD
GitHub
CVSS 3.1
8.8
EPSS
2.9%
CVE-2020-26222
Ruby
EPSS 3%
CVSS 8.8
HIGH
POC
PATCH
This Week
Dependabot is a set of packages for automated dependency management for Ruby, JavaScript, Python, PHP, Elixir, Rust, Java, .NET, Elm and Go. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.
RCE
Python
Dependabot
NVD
GitHub