In the python-libnmap package through 0.7.2 for Python, remote command execution can occur (if used in a client application that does not validate arguments).
References
- https://nvd.nist.gov/vuln/detail/CVE-2022-30284
- https://github.com/savon-noir/python-libnmap/releases
- https://pypi.org/project/python-libnmap/
- https://www.swascan.com/security-advisory-libnmap-2/
- https://libnmap.readthedocs.io/en/latest/process.html#using-libnmap-process
- https://github.com/advisories/GHSA-qwqv-j7jr-4hp6