Wiz
Vulnerability DatabaseGHSA-2r6g-7r83-jg72

GHSA-2r6g-7r83-jg72
Python vulnerability analysis and mitigation

Overview

The spam project on PyPI was compromised through a user account takeover via a phishing attack in August 2022. The incident resulted in malicious releases (versions 2.0.2 and 4.0.2) being published to the Python Package Index (PyPI). This security incident was assigned the identifier GHSA-2r6g-7r83-jg72 and was classified as a high-severity vulnerability (GitHub Advisory).

Technical details

The compromised versions (2.0.2 and 4.0.2) of the spam package contained malicious code designed to collect environment variables and execute malware during the package installation process (PyPA Advisory).

Impact

When installed, the compromised versions of the package would collect sensitive environment variables and download and execute malware on the target system, potentially leading to system compromise (GitHub Advisory).

Mitigation and workarounds

Users should immediately remove any instances of the spam package versions 2.0.2 and 4.0.2 from their systems. No patched versions were released, suggesting users should avoid using this package entirely (GitHub Advisory).

Community reactions

PyPI acknowledged the security incident through their official Twitter account, alerting users about the compromise (PyPI Tweet).

Additional resources

SourceThis report was generated using AI

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

Cloud Vulnerability DB

An open project to list all known cloud vulnerabilities and Cloud Service Provider security issues

Cloud threat landscape

Cloud threat landscape

A comprehensive threat intelligence database of cloud security incidents, actors, tools and techniques

PEACH

PEACH

A step-by-step framework for modeling and improving SaaS and PaaS tenant isolation

Get a personalized demo

Ready to see Wiz in action?

“Best User Experience I have ever seen, provides full visibility to cloud workloads.”
David EstlickCISO
“Wiz provides a single pane of glass to see what is going on in our cloud environments.”
Adam FletcherChief Security Officer
“We know that if Wiz identifies something as critical, it actually is.”
Greg PoniatowskiHead of Threat and Vulnerability Management
Get a demo