Lucene search
GoogleOSV:GHSA-CF3C-FFFP-34QHHistoryOct 29, 2018 - 7:05 p.m.
conference-scheduler-cli Arbitrary Code Execution
2018-10-2919:05:38
Google
osv.dev
9
0.003 Low
EPSS
Percentile
67.9%
In conference-scheduler-cli, a pickle.load call on imported data allows remote attackers to execute arbitrary code via a crafted .pickle file, as demonstrated by Python code that contains an os.system call.
Related
osv
osv
CVE-2018-14572
2018-08-28 19:29:16
PYSEC-2018-64
2018-08-28 19:29:00
github
github
conference-scheduler-cli Arbitrary Code Execution
2018-10-29 19:05:38
cve
cve
CVE-2018-14572
2018-08-28 19:29:16
veracode
veracode
Remote Code Execution (RCE)
2018-08-29 02:36:44
cvelist
cvelist
CVE-2018-14572
2018-08-28 19:00:00
nvd
nvd
CVE-2018-14572
2018-08-28 19:29:16
prion
prion
Design/Logic Flaw
2018-08-28 19:29:00