Lucene search
MitreCVELIST:CVE-2022-35411HistoryJul 08, 2022 - 6:07 p.m.
CVE-2022-35411
2022-07-0818:07:40
mitre
www.cve.org
rpc.py through 0.6.0 allows Remote Code Execution because an unpickle occurs when the “serializer: pickle” HTTP header is sent. In other words, although JSON (not Pickle) is the default data format, an unauthenticated client can cause the data to be processed with unpickle.
Related
githubexploit
githubexploit
Exploit for Insufficiently Protected Credentials in Rpc.Py Project Rpc.Py
2024-04-14 04:08:44
osv
osv
CVE-2022-35411
2022-07-08 19:15:08
rpc.py vulnerable to Deserialization of Untrusted Data
2022-07-09 00:00:19
packetstorm
packetstorm
rpc.py 0.6.0 Remote Code Execution
2022-07-29 00:00:00
zdt
zdt
rpc.py 0.6.0 - Remote Code Execution Exploit
2022-07-31 00:00:00
nvd
nvd
CVE-2022-35411
2022-07-08 19:15:08
checkpoint_advisories
checkpoint_advisories
rpc.py Project Remote Code Execution (CVE-2022-35411)
2022-11-17 00:00:00
cve
cve
CVE-2022-35411
2022-07-08 19:15:08
veracode
veracode
Remote Code Execution (RCE)
2022-07-11 03:24:31
prion
prion
Remote code execution
2022-07-08 19:15:00
github
github
rpc.py vulnerable to Deserialization of Untrusted Data
2022-07-09 00:00:19
exploitdb
exploitdb
rpc.py 0.6.0 - Remote Code Execution (RCE)
2022-07-29 00:00:00