conda-smithy — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in conda-smithy, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-49824	conda-smithy Insecure Encryption Vulnerable to Oracle Padding Attack CWE-200	5.9^AI	Medium^AI	2025-06-17
CVE-2025-49843	conda-smithy Has Incorrect Default File Permissions CWE-276	8.1^AI	High^AI	2025-06-17

All 2 known CVE vulnerabilities affecting conda-smithy with full Chinese analysis, references, and POCs where available.