Security Advisory

CVE-2021-3572

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-11-10 17:55:47

Last updated 2024-08-03 17:01:08

Assigner redhat

State PUBLISHED

Description

A flaw was found in python-pip in the way it handled Unicode separators in git references. A remote attacker could possibly use this issue to install a different revision on a repository. The highest threat from this vulnerability is to data integrity. This is fixed in python-pip version 21.1.

← Browse all CVEs View on cve.org ↗