CVE-2022-30284

Name of the Vulnerable Software and Affected Versions python-libnmap versions through 0.7.2

Description Remote command execution can occur in the python-libnmap package if used in a client application that does not validate arguments. The vendor believes it would be unrealistic for an application to call NmapProcess with arguments taken from input data that arrived over an untrusted network.

Recommendations For versions through 0.7.2, consider validating arguments before calling NmapProcess to prevent remote command execution. As a temporary workaround, restrict the use of NmapProcess to trusted input data until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.