CVE-2025-32798 | conda-build up to 25.3.x eval code injection (GHSA-6cc8-c3c9-3rgr)

June 17, 2025 Yanac

A vulnerability has been found in conda-build up to 25.3.x and classified as critical. This vulnerability affects the function eval. The manipulation leads to code injection.

This vulnerability was named CVE-2025-32798. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More

CVE-2025-32797 | conda-build up to 25.3.0 File Creation conda_build.sh write_build_scripts insecure inherited permissions (GHSA-vfp6-3v8g-vcmm)
CVE-2025-6179 | Google ChromeOS 16181.27.0 Extension Management permission (Issue 399652)