Vulnerabilities

CVE-2026-34444

by Fred · 06/04/2026

Lupa integrates the runtimes of Lua or LuaJIT2 into CPython. In 2.6 and earlier, attribute_filter is not consistently applied when attributes are accessed through built-in functions like getattr and setattr. This allows an attacker to bypass the intended restrictions and eventually achieve arbitrary code execution.

More information : https://github.com/scoder/lupa/security/advisories/GHSA-69v7-xpr6-6gjm

Similar

Tags: Cybersecurity Alert