Lucene search
Veracode Vulnerability DatabaseVERACODE:46742HistoryMay 05, 2024 - 2:38 p.m.
Arbitrary Code Execution
2024-05-0514:38:36
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
r-base
arbitrary code execution
untrusted data
deserialization
rds formatted file
r package
r statistical programming language
r-base is vulnerable to Arbitrary Code Execution. The vulnerability is due to deserialization of untrusted data, which can occur when interacting with a maliciously crafted RDS (R Data Serialization) formatted file or R package, allows maliciously crafted RDS (R Data Serialization) formatted files to execute arbitrary code when interacted with in the R statistical programming language.
| CPE | Name | Operator | Version |
|---|---|---|---|
| r-base:sid | eq | 4.1.1-2 | |
| r-base:sid | eq | 4.0.3-1 | |
| r-base:sid | eq | 4.1.1-2 | |
| r-base:sid | eq | 4.0.3-1 |
Related
nessus
nessus
Fedora 38 : R (2024-bc590cb3f1)
2024-05-09 00:00:00
Fedora 39 : R (2024-07b7b83a4f)
2024-05-09 00:00:00
R Programming Language 1.4.0 < 4.4.0 Insecure Deserialization
2024-05-09 00:00:00
cvelist
cvelist
CVE-2024-27322
2024-04-29 13:02:37
debiancve
debiancve
CVE-2024-27322
2024-04-29 13:15:30
freebsd
freebsd
R -- arbitrary code execution vulnerability
2024-04-29 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: R-4.3.3-2.fc39
2024-05-09 02:05:27
[SECURITY] Fedora 38 Update: R-4.3.3-2.fc38
2024-05-09 01:49:21
cve
cve
CVE-2024-27322
2024-04-29 13:15:30
