Over 43 Million Python Installations Vulnerable to Dangerous Code Execution Flaw
Posted: Mon Mar 10, 2025 5:09 pm
A significant vulnerability has been uncovered in the Python JSON Logger package (python-json-logger), affecting versions 3.2.0 and 3.2.1.
This flaw, CVE-2025-27607 allows for remote code execution (RCE) due to misusing a missing dependency known as msgspec-python313-pre.
https://gbhackers.com/over-43-million-p ... ulnerable/
This flaw, CVE-2025-27607 allows for remote code execution (RCE) due to misusing a missing dependency known as msgspec-python313-pre.
https://gbhackers.com/over-43-million-p ... ulnerable/