Python · Autoswitch Python Virtualenv · CVE-2020-11073
**Name of the Vulnerable Software and Affected Versions**
Autoswitch Python Virtualenv versions prior to 1.16.0
**Description**
A user who enters a directory with a malicious `.venv` file could run arbitrary code without any user interaction.
**Recommendations**
For versions prior to 1.16.0, update to version 1.16.0 to resolve the issue.
As a temporary workaround, consider avoiding directories that may contain malicious `.venv` files until the update is applied.