Debian Tqdm vulnerabilities
2 known vulnerabilities affecting debian/tqdm.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2024-34062MEDIUMCVSS 4.8fixed in tqdm 4.66.4-1 (forky)2024
CVE-2024-34062 [MEDIUM] CVE-2024-34062: tqdm - tqdm is an open source progress bar for Python and CLI. Any optional non-boolean...
tqdm is an open source progress bar for Python and CLI. Any optional non-boolean CLI arguments (e.g. `--delim`, `--buf-size`, `--manpath`) are passed through python's `eval`, allowing arbitrary code execution. This issue is only locally exploitable and had been addressed in release version 4.66.3. All users are advised to upgrade. There are no known workarounds for t
debian
CVE-2016-10075HIGHCVSS 7.8fixed in tqdm 4.11.2-1 (bookworm)2016
CVE-2016-10075 [HIGH] CVE-2016-10075: tqdm - The tqdm._version module in tqdm versions 4.4.1 and 4.10 allows local users to e...
The tqdm._version module in tqdm versions 4.4.1 and 4.10 allows local users to execute arbitrary code via a crafted repo with a malicious git log in the current working directory.
Scope: local
bookworm: resolved (fixed in 4.11.2-1)
bullseye: resolved (fixed in 4.11.2-1)
forky: resolved (fixed in 4.11.2-1)
sid: resolved (fixed in 4.11.2-1)
trixie: resolved (fixed in 4.1
debian