Every CVE whose affected-product data names Anaconda Anaconda3, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2021-42969 — CVSS 8.8 (high): Certain Anaconda3 2021.05 are affected by OS command injection. When a user installs Anaconda, an attacker can create a new file and write…
CVE-2022-26526 — CVSS 7.8 (high): Anaconda Anaconda3 (Anaconda Distribution) through 2021.11.0.0 and Miniconda3 through 4.11.0.0 can create a world-writable directory under…
CVE-2024-46060 — CVSS 7.8 (high): Anaconda3 macOS installers before 2024.06-1 contain a local privilege escalation vulnerability when installed outside the user's home…
CVE-2023-35845 — CVSS 4.7 (medium): Anaconda 3 2023.03-1-Linux allows local users to disrupt TLS certificate validation by modifying the cacert.pem file used by the installed…