Skip to main content

Embedded Malicious Code

CVE-2022-28470

Severity High
Score 9.8/10

Summary

marcador package versions 0.1 through 0.13 in PyPI included a code-execution backdoor.

  • LOW
  • NETWORK
  • HIGH
  • UNCHANGED
  • NONE
  • NONE
  • HIGH
  • HIGH

CWE-506 - Embedded Malicious Code

The application contains code that appears to be malicious in nature.

Advisory Timeline

  • Published