Back to search
CVE-2021-42969
Published: May 13, 2022
Modified: Aug 4, 2024
PUBLISHED
Description
Certain Anaconda3 2021.05 are affected by OS command injection. When a user installs Anaconda, an attacker can create a new file and write something in usercustomize.py. When the user opens the terminal or activates Anaconda, the command will be executed.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://yuaneuro.cn/anaconda/anaconda_command_execution.docx
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now