CVE-2020-5664

2020-11-1604:15:30

jpcert

www.cve.org

deserialization vulnerability

xoonips

remote code execution

AI Score

9.7

Confidence

High

EPSS

0.032

Percentile

91.4%

JSON

Deserialization of untrusted data vulnerability in XooNIps 3.49 and earlier allows remote attackers to execute arbitrary code via unspecified vectors.

CNA Affected

[
  {
    "product": "XooNIps",
    "vendor": "Neuroinformatics Unit, Integrative Computational Brain Science Collaboration Division, RIKEN Center for Brain Science",
    "versions": [
      {
        "status": "affected",
        "version": "3.49 and earlier"
      }
    ]
  }
]