PatchSiren

Scoder CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

HIGH Scoder CVE published 2026-04-06

CVE-2026-34444

CVE-2026-34444 is a high-severity vulnerability in Lupa, a Python package that integrates Lua or LuaJIT2 runtimes into CPython. The vulnerability allows an attacker to bypass the intended restrictions and eventually achieve arbitrary code execution due to inconsistent application of the attribute_filter when attributes are accessed through built-in functions like getattr and setattr. This issue affects Lu [truncated]