Critical severity9.8NVD Advisory· Published Oct 11, 2022· Updated Jun 17, 2026
CVE-2022-41387
CVE-2022-41387
Description
The d8s-pdfs package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-urls package. The affected version is 0.1.0.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Python/d8s-pdfsdescription
Patches
Vulnerability mechanics
References
3- github.com/democritus-project/d8s-pdfs/issues/7nvdExploitIssue TrackingThird Party Advisory
- pypi.org/project/d8s-pdfs/nvdProductThird Party Advisory
- pypi.org/project/democritus-urls/nvdProductThird Party Advisory
News mentions
0No linked articles in our index yet.