by @Ejay
21 May 2024

Critical Security Flaw in Pymatgen Library (CVE-2024-23346)

by @Ejay
21 May 2024

Critical Security Flaw in Pymatgen Library (CVE-2024-23346)

CVEs

9.3 Critical Severity

Screenshots from the blog posts

images/clwakal68h3401hmu3w7kd1vc.pngimages/clwakal68h3401hmu3w7kd1vc.png

Summary

Pymatgen had a critical security flaw in from_transformation_str() before version 2024.2.20, allowing code execution through unsafe eval(), update now

Description

@Ejay

2 posts

Total vcoins

2K

Comments (0)