VYPR

Duplicity

by Duplicity Project

pypi: duplicity

CVEs (2)

  • CVE-2014-3495Dec 13, 2019
    risk 0.00cvss epss 0.01

    duplicity 0.6.24 has improper verification of SSL certificates

  • CVE-2007-5201Oct 4, 2007
    risk 0.00cvss epss 0.00

    The FTP backend for Duplicity before 0.4.9 sends the password as a command line argument when calling ncftp, which might allow local users to read the password by listing the process and its arguments.