Arbitrary Code Execution Vulnerability Exploited in Python Library pymatgen

An arbitrary code execution vulnerability has been exploited in the Python library pymatgen, which is used in materials science. This exploitation allowed attackers to obtain credentials from a Linux host and elevate privileges via an LFI vulnerability in aiohttp. The technical details include the use of pymatgen for the initial exploitation and aiohttp for privilege escalation. The impact includes unauthorized access to credentials and privilege escalation on the target system.