VYPR

Setuptools

by Python (programming language)

pypi: setuptools

CVEs (1)

  • CVE-2013-1633Aug 6, 2013
    risk 0.00cvss epss 0.02

    easy_install in setuptools before 0.7 uses HTTP to retrieve packages from the PyPI repository, and does not perform integrity checks on package contents, which allows man-in-the-middle attackers to execute arbitrary code via a crafted response to the default use of the product.