Lucene search
PRIOn knowledge basePRION:CVE-2018-14572HistoryAug 28, 2018 - 7:29 p.m.
Design/Logic Flaw
2018-08-2819:29:00
PRIOn knowledge base
www.prio-n.com
2
0.003 Low
EPSS
Percentile
67.9%
In conference-scheduler-cli, a pickle.load call on imported data allows remote attackers to execute arbitrary code via a crafted .pickle file, as demonstrated by Python code that contains an os.system call.
| CPE | Name | Operator | Version |
|---|---|---|---|
| conference-scheduler-cli | le | 0.10.1 |
Related
osv
osv
CVE-2018-14572
2018-08-28 19:29:16
PYSEC-2018-64
2018-08-28 19:29:00
conference-scheduler-cli Arbitrary Code Execution
2018-10-29 19:05:38
github
github
conference-scheduler-cli Arbitrary Code Execution
2018-10-29 19:05:38
cve
cve
CVE-2018-14572
2018-08-28 19:29:16
veracode
veracode
Remote Code Execution (RCE)
2018-08-29 02:36:44
cvelist
cvelist
CVE-2018-14572
2018-08-28 19:00:00
nvd
nvd
CVE-2018-14572
2018-08-28 19:29:16