Security Advisory

CVE-2022-40897

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-12-22 00:00:00

Last updated 2025-11-04 16:09:54

Assigner mitre

State PUBLISHED

Description

Python Packaging Authority (PyPA) setuptools before 65.5.1 allows remote attackers to cause a denial of service via HTML in a crafted package or custom PackageIndex page. There is a Regular Expression Denial of Service (ReDoS) in package_index.py.

← Browse all CVEs View on cve.org ↗