{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/35726?format=json","vulnerability_id":"VCID-156d-3c78-mbh4","summary":"GramAddict through 1.2.3 allows remote attackers to execute arbitrary code because of use of UIAutomator2 and ATX-Agent. The attacker must be able to reach TCP port 7912, e.g., by being on the same Wi-Fi network.","aliases":[{"alias":"CVE-2020-36245"},{"alias":"PYSEC-2021-65"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19949?format=json","purl":"pkg:pypi/gramaddict@1.2.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/gramaddict@1.2.4"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19942?format=json","purl":"pkg:pypi/gramaddict@1.2.0b1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-156d-3c78-mbh4"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/gramaddict@1.2.0b1"},{"url":"http://public2.vulnerablecode.io/api/packages/19943?format=json","purl":"pkg:pypi/gramaddict@1.2.0b2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-156d-3c78-mbh4"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/gramaddict@1.2.0b2"},{"url":"http://public2.vulnerablecode.io/api/packages/19944?format=json","purl":"pkg:pypi/gramaddict@1.2.0b3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-156d-3c78-mbh4"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/gramaddict@1.2.0b3"},{"url":"http://public2.vulnerablecode.io/api/packages/19945?format=json","purl":"pkg:pypi/gramaddict@1.2.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-156d-3c78-mbh4"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/gramaddict@1.2.0"},{"url":"http://public2.vulnerablecode.io/api/packages/19946?format=json","purl":"pkg:pypi/gramaddict@1.2.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-156d-3c78-mbh4"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/gramaddict@1.2.1"},{"url":"http://public2.vulnerablecode.io/api/packages/19947?format=json","purl":"pkg:pypi/gramaddict@1.2.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-156d-3c78-mbh4"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/gramaddict@1.2.2"},{"url":"http://public2.vulnerablecode.io/api/packages/19948?format=json","purl":"pkg:pypi/gramaddict@1.2.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-156d-3c78-mbh4"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/gramaddict@1.2.3"}],"references":[{"reference_url":"https://github.com/GramAddict/bot/issues/134","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/GramAddict/bot/issues/134"}],"weaknesses":[],"exploits":[],"severity_range_score":null,"exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-156d-3c78-mbh4"}