Trellix security researchers have revealed a major vulnerability in the Python tarfile library that could be exploited in software supply chain attacks. The researchers believe it could be used against organizations at scale, which could lead to attacks as serious as the one that hit SolarWinds two years ago. Perhaps more troubling is that the […]
The post Unpatched Python Library Affects More Than 300,000 Open Source Projects appeared first on eSecurityPlanet.
This article has been indexed from eSecurityPlanet
Read the original article: