{"id":"PYSEC-2022-189","details":"A Python format string issue leading to information disclosure and potentially remote code execution in ConsoleMe for all versions prior to 1.2.2","aliases":["CVE-2022-27177","GHSA-74w3-2r77-fw5h"],"modified":"2023-11-08T04:08:56.392941Z","published":"2022-04-01T23:15:00Z","references":[{"type":"ADVISORY","url":"https://github.com/Netflix/security-bulletins/blob/master/advisories/nflx-2022-001.md"},{"type":"ADVISORY","url":"https://github.com/advisories/GHSA-74w3-2r77-fw5h"}],"affected":[{"package":{"name":"consoleme","ecosystem":"PyPI","purl":"pkg:pypi/consoleme"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.2.2"}]}],"versions":["0.0.0","1.0.6.dev10","1.1.1","1.1.10.dev1","1.1.10.dev2","1.1.10.dev3","1.1.10.dev4","1.1.10.dev5","1.1.10.dev6","1.1.2","1.1.2.dev1","1.1.3","1.1.3.dev1","1.1.3.dev2","1.1.3.dev3","1.1.3.dev4","1.1.3.dev5","1.1.3.dev6","1.1.3.dev7","1.1.3.dev8","1.1.4","1.1.5","1.1.5.dev1","1.1.5.dev2","1.1.5.dev3","1.1.6","1.1.6.dev1","1.1.6.dev2","1.1.7","1.1.8","1.1.8.dev1","1.1.8.dev2","1.1.8.dev3","1.1.8.dev4","1.1.9","1.1.9.dev1","1.2.0","1.2.1","1.2.1.dev1","1.2.2.dev3","1.2.2.dev4"],"database_specific":{"source":"https://github.com/pypa/advisory-database/blob/main/vulns/consoleme/PYSEC-2022-189.yaml"}}],"schema_version":"1.7.3"}