### [CVE-2021-34141](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34141)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brightgreen)

### Description

An incomplete string comparison in the numpy.core component in NumPy before 1.22.0 allows attackers to trigger slightly incorrect copying by constructing specific string objects. NOTE: the vendor states that this reported code behavior is "completely harmless."

### POC

#### Reference
- https://www.oracle.com/security-alerts/cpujul2022.html

#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/Daybreak2019/PolyCruise
- https://github.com/aryanxsh/example-vulnerable-repo
- https://github.com/awen-li/PolyCruise
- https://github.com/mangoding71/AGNC
- https://github.com/s3dev/ppklib