Unrated severityNVD Advisory· Published May 13, 2022· Updated Aug 4, 2024

CVE-2021-42969

Description

Certain Anaconda3 2021.05 are affected by OS command injection. When a user installs Anaconda, an attacker can create a new file and write something in usercustomize.py. When the user opens the terminal or activates Anaconda, the command will be executed.

Affected products

Anaconda3/Anaconda3description
Anaconda/Anaconda3llm-create
Range: = 2021.05
osv-coords
pkg:bitnami/miniconda
Range: >= 2021.05.0, <= 2021.05.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

yuaneuro.cn/anaconda/anaconda_command_execution.docxmitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.004
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000