Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

conda-build — Vulnerabilities & Security Advisories 4

All 4 CVE vulnerabilities found in conda-build, with AI-generated Chinese analysis, references, and POCs.

Vendor: conda

CVE IDTitleCVSSSeverityPublished
CVE-2025-32800 Conda-build vulnerable to supply chain attack vector due to pyproject.toml referring to dependencies not present in PyPI CWE-1357 9.8AICriticalAI2025-06-16
CVE-2025-32799 Conda-build Vulnerable to Path Traversal via Malicious Tar File CWE-22 9.8AICriticalAI2025-06-16
CVE-2025-32798 Conda-build Allows Arbitrary Code Execution via Malicious Recipe Selectors CWE-94 8.8AIHighAI2025-06-16
CVE-2025-32797 Conda-build Insecure Build Script Permissions Enabling Arbitrary Code Execution CWE-277 7.0AIHighAI2025-06-16

All 4 known CVE vulnerabilities affecting conda-build with full Chinese analysis, references, and POCs where available.