Python vulnerabilities and misconfigurations can be exploited when scripts are executed with elevated privileges, or when Python imports modules from insecure locations. Attackers can abuse this to execute arbitrary code or escalate privileges.
- Privilege escalation via Python module/library hijacking
- Command execution through insecure Python scripts run as root (sudo / cron jobs)
- Abusing writable directories in Python import paths
- Exploitation of insecure dependencies or third-party libraries