CVE-2022-21699

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-21699

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-21699.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2022-21699

Aliases

Related

Published

2022-01-19T22:15:09Z

Modified

2024-10-12T09:09:25.190783Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

IPython (Interactive Python) is a command shell for interactive computing in multiple programming languages, originally developed for the Python programming language. Affected versions are subject to an arbitrary code execution vulnerability achieved by not properly managing cross user temporary files. This vulnerability allows one user to run code as another on the same machine. All users are advised to upgrade.

References

Affected packages

Debian:11 / ipython

Package

Name: ipython
Purl: pkg:deb/debian/ipython?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.20.0-1+deb11u1

Affected versions

7.*

7.20.0-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / ipython

Package

Name: ipython
Purl: pkg:deb/debian/ipython?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.31.1-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / ipython

Package

Name: ipython
Purl: pkg:deb/debian/ipython?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.31.1-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Git / github.com/ipython/ipython

Affected ranges

Type: GIT
Repo: https://github.com/ipython/ipython
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

46a51ed69cdf41b4333943d9ceeb945c4ede5668

Affected versions

1.*

1.0.0a1

3.*

3.0.0-dev

4.*

4.0.0

4.1.0

4.1.0rc1

4.1.0rc2

5.*

5.0.0

5.0.0b1

5.0.0b2

5.0.0b3

5.0.0b4

5.0.0rc1

5.1.0

6.*

6.0.0

6.0.0rc1

6.1.0

6.2.0

6.3.0

7.*

7.0.0

7.0.0-doc

7.0.0b1

7.0.0rc1

7.0.1

7.1.0

7.1.1

7.10.0

7.10.1

7.11.0

7.11.1

7.12.0

7.2.0

7.3.0

7.4.0

7.5.0

7.6.0

7.6.1

7.7.0

7.8.0

7.9.0

8.*

8.0.0

8.0.0a1

8.0.0b1

8.0.0rc1

dev-0.*

dev-0.11

rel-0.*

rel-0.11

rel-0.12

rel-0.13

rel-0.8.4

rel-0.9

rel-0.9.1

rel-1.*

rel-1.0.0

rel-2.*

rel-2.0.0

rel-3.*

rel-3.0.0

rel-4.*

rel-4.0.0

rel-4.0.0b1

rel-4.1.0

rel-4.1.0rc2