Search CVE reports
1 – 2 of 2 results
CVE-2024-34062
Medium prioritytqdm is an open source progress bar for Python and CLI. Any optional non-boolean CLI arguments (e.g. `--delim`, `--buf-size`, `--manpath`) are passed through python's `eval`, allowing arbitrary code execution. This issue is only...
1 affected package
tqdm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| tqdm | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | — |
CVE-2016-10075
Medium priorityThe tqdm._version module in tqdm versions 4.4.1 and 4.10 allows local users to execute arbitrary code via a crafted repo with a malicious git log in the current working directory.
1 affected package
tqdm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| tqdm | — | — | — | Not affected | Not in release |