CVE-2022-36070 : What You Need to Know
Learn about CVE-2022-36070 affecting Poetry, a Python dependency manager, allowing local code execution on Windows. Find out the impact, vulnerability description, affected versions, and mitigation steps.
Poetry is a Python dependency manager vulnerable to local code execution on Windows due to how it handles Git repository dependencies. This CVE allows for the execution of untrusted code, potentially leading to system takeover, credential theft, or unauthorized access to other systems.