VulnerableCode Package Details - pkg:pypi/guake@3.4.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:pypi/guake@3.4.0

Essentials
History (1)

purl	pkg:pypi/guake@3.4.0

Next non-vulnerable version	3.8.5
Latest non-vulnerable version	3.8.5
Risk

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-kagh-kbwa-mkby Aliases: CVE-2021-23556 GHSA-7x48-7466-3g33 PYSEC-2022-165 SNYK-PYTHON-GUAKE-2386334	The package guake before 3.8.5 are vulnerable to Exposed Dangerous Method or Function due to the exposure of execute_command and execute_command_by_uuid methods via the d-bus interface, which makes it possible for a malicious user to run an arbitrary command via the d-bus method. Note: Exploitation requires the user to have installed another malicious program that will be able to send dbus signals or run terminal commands.	3.8.5 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-02T04:17:09.344148+00:00	Pypa Importer	Affected by	VCID-kagh-kbwa-mkby	https://github.com/pypa/advisory-database/blob/main/vulns/guake/PYSEC-2022-165.yaml	38.6.0