LF Projects CDO Local UUID Utility (cdo-local-uuid) 0.4.0 for Python
Approved changes feed: RSS · Atom
cpe:2.3:a:lfprojects:cdo_local_uuid_utility:0.4.0:*:*:*:*:python:*:*
part: a version: 0.4.0 update: *
| Vendor | Lfprojects (4544abc5-133d-544b-9bd5-895c4c487a16) |
|---|---|
| Product | Cdo Local Uuid Utility (14e487fc-789f-527d-b278-565933edd55e) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | python |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/cyber-domain-ontology/cdo-utility-local-uuid |
purl2cpe | 2026-06-01 10:17:50.061020 |
pkg:pypi/cdo-local-uuid |
purl2cpe | 2026-06-01 10:17:50.061021 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-22194 |
vulnerable | 2026-06-03 14:54:59.991399 |
cdo-local-uuid vulnerable to insertion of artifact derived from developer's Present Working Directory into demonstration code
LOW (2.2)
cdo-local-uuid project provides a specialized UUID-generating function that can, on user request, cause a program to generate deterministic UUIDs. An information leakage vulnerability is present in `cdo-local-uuid` at version `0.4.0`, and in `case-utils` in unpatched versions (matching the pattern `0.x.0`) at and since `0.5.0`, before `0.15.0`. The vulnerability stems from a Python function, `cdo_local_uuid.local_uuid()`, and its original implementation `case_utils.local_uuid()`.
Published: 2024-01-11T02:21:53.758Z
Updated: 2025-06-03T14:25:30.740Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.