DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.

Metrics

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

No data.

No data.

No data.

No data.

References

No reference.

History

Mon, 26 Aug 2024 15:45:00 +0000

Type Values Removed Values Added
References
Metrics cvssV3_1

{'score': 0.0, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:N'}

Mon, 26 Aug 2024 15:30:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:numfocus:pandas:*:*:*:*:*:*:*:*
Vendors & Products Numfocus
Numfocus pandas
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 26 Aug 2024 14:45:00 +0000

Type Values Removed Values Added
Description Python Pip Pandas v2.2.2 was discovered to contain an arbitrary file read vulnerability. NOTE: this is disputed by a third party because file reading is an intended behavior. DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.

Mon, 26 Aug 2024 14:30:00 +0000

Type Values Removed Values Added
Description Python Pip Pandas v2.2.2 was discovered to contain an arbitrary file read vulnerability. Python Pip Pandas v2.2.2 was discovered to contain an arbitrary file read vulnerability. NOTE: this is disputed by a third party because file reading is an intended behavior.

Mon, 26 Aug 2024 04:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-22

Mon, 26 Aug 2024 03:30:00 +0000

Type Values Removed Values Added
First Time appeared Numfocus
Numfocus pandas
CPEs cpe:2.3:a:python:pip_panda:2.2.2:*:*:*:*:*:*:* cpe:2.3:a:numfocus:pandas:*:*:*:*:*:*:*:*
Vendors & Products Python
Python pip Panda
Numfocus
Numfocus pandas
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

 cvssV3_1

{'score': 0, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 23 Aug 2024 19:30:00 +0000

Type Values Removed Values Added
First Time appeared Python
Python pip Panda
Weaknesses CWE-22
CPEs cpe:2.3:a:python:pip_panda:2.2.2:*:*:*:*:*:*:*
Vendors & Products Python
Python pip Panda
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 23 Aug 2024 17:30:00 +0000

Type Values Removed Values Added
Description Python Pip Pandas v2.2.2 was discovered to contain an arbitrary file read vulnerability.
References
cve-icon MITRE

Status: REJECTED

Assigner: mitre

Published:

Updated: 2024-08-26T14:33:05.281221

Reserved: 2024-08-05T00:00:00

Link: CVE-2024-42992

cve-icon Vulnrichment

Updated:

cve-icon NVD

Status : Rejected

Published: 2024-08-23T18:15:07.427

Modified: 2024-08-26T15:15:08.593

Link: CVE-2024-42992

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.