Impact
Any optional non-boolean CLI arguments (e.g. --delim, --buf-size, --manpath) are passed through python's eval, allowing arbitrary code execution. Example:
python -m tqdm --manpath="\" + str(exec(\"import os\nos.system('echo hi && killall python3')\")) + \""Patches
4e613f8 released in tqdm>=4.66.3
Workarounds
None
References
CopperEagle Reporter
Impact
Any optional non-boolean CLI arguments (e.g.
--delim,--buf-size,--manpath) are passed through python'seval, allowing arbitrary code execution. Example:python -m tqdm --manpath="\" + str(exec(\"import os\nos.system('echo hi && killall python3')\")) + \""Patches
4e613f8 released in
tqdm>=4.66.3Workarounds
None
References