Name of the Vulnerable Software and Affected Versions: asteval (affected versions not specified)

Description: The issue arises from how asteval performs attribute access verification, specifically in the on attribute node handler. This handler prevents access to attributes that are either present in the UNSAFE ATTRS list or are formed by names starting and ending with . However, instances of the Procedure class expose their AST without proper protection, allowing an attacker to modify the AST during runtime and leverage unintended behavior. An attacker can exploit this by hooking any Attribute AST node, modifying the node.attr.startswith function to point to a custom procedure, and then using the obtained reference to retrieve malicious attributes without passing the on attribute checks.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.