icon

We found results for “

CVE-2022-21699

Good to know:

icon
icon

Date: January 19, 2022

IPython (Interactive Python) is a command shell for interactive computing in multiple programming languages, originally developed for the Python programming language. Affected versions are subject to an arbitrary code execution vulnerability achieved by not properly managing cross user temporary files. This vulnerability allows one user to run code as another on the same machine. All users are advised to upgrade.

Language: Python

Severity Score

Severity Score

Weakness Type (CWE)

Improper Privilege Management

CWE-269

Execution with Unnecessary Privileges

CWE-250

Incorrect Execution-Assigned Permissions

CWE-279

Top Fix

icon

Upgrade Version

Upgrade to version ipython - 5.11,7.16.3,7.31.1,8.0.1

Learn More

CVSS v3.1

Base Score:
Attack Vector (AV): LOCAL
Attack Complexity (AC): LOW
Privileges Required (PR): LOW
User Interaction (UI): NONE
Scope (S): CHANGED
Confidentiality (C): HIGH
Integrity (I): HIGH
Availability (A): HIGH

CVSS v2

Base Score:
Access Vector (AV): LOCAL
Access Complexity (AC): LOW
Authentication (AU): NONE
Confidentiality (C): PARTIAL
Integrity (I): PARTIAL
Availability (A): PARTIAL
Additional information:

Do you need more information?

Contact Us