CNNVD-202509-712 Information
CNNVD ID
CNNVD-202509-712
Related CVE
- CNNVD Published: 2025-09-05
Description (Chinese)
DeepDiff是Sep Dehpour个人开发者的一个Python库。 DeepDiff 8.6.0及之前版本存在安全漏洞,该漏洞源于Delta类原型污染,可能导致拒绝服务和远程代码执行。
Description (English)
DeepDiff is a Python library of Sep Dehpour’s personal developer. There is a security loophole in DeepDiff 8.6.0 and earlier versions, which originates from the Delta type prototype contamination, which could lead to denial of service and remote code enforcement.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
个人开发者
Published
2025-09-05
Last Modified
2026-02-24
References
https://github.com/seperman/deepdiff/security/advisories/GHSA-mw26-5g2v-hqw3 https://github.com/seperman/deepdiff/releases/tag/8.6.1 https://github.com/seperman/deepdiff/commit/c69c06c13f75e849c770ade3f556cd16209fd183 https://vigilance.fr/vulnerability/DeepDiff-code-execution-via-Pickle-Deserialization-48197
Patch
https://github.com/seperman/deepdiff/releases
Share on: