Filtered by vendor Rdflib Project Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2019-7653 3 Canonical, Debian, Rdflib Project 3 Ubuntu Linux, Debian Linux, Rdflib 2024-11-21 9.8 Critical
The Debian python-rdflib-tools 4.2.2-1 package for RDFLib 4.2.2 has CLI tools that can load Python modules from the current working directory, allowing code injection, because "python -m" looks in this directory, as demonstrated by rdf2dot. This issue is specific to use of the debian/scripts directory.