Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.3 views

TencentOS Server 4: R (TSSA-2024:0936)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0936 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

8.8CVSS8.2AI score0.23618EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.7 views

Azure Linux 3.0 Security Update: R (CVE-2024-27322)

The version of R installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27322 advisory. - Deserialization of untrusted data can occur in the R statistical programming language, on any version starting at...

8.8CVSS8.2AI score0.23618EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2024/07/22 3:42 p.m.18 views

CVE-2024-27322 affecting package R for versions less than 4.4.1-1

CVE-2024-27322 affecting package R for versions less than 4.4.1-1. An upgraded version of the package is available that resolves this issue...

8.8CVSS7AI score0.23618EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.21 views

CBL Mariner 2.0 Security Update: R (CVE-2024-27322)

The version of R installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27322 advisory. - Deserialization of untrusted data can occur in the R statistical programming language, on any version starting at...

8.8CVSS8.3AI score0.23618EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2024/06/28 5:7 p.m.14 views

CVE-2024-27322 affecting package R for versions less than 4.1.0-5

CVE-2024-27322 affecting package R for versions less than 4.1.0-5. A patched version of the package is available...

8.8CVSS7AI score0.23618EPSS
Exploits0
Amazon
Amazon
added 2024/06/24 12:0 a.m.6 views

Important: R

Issue Overview: Deserialization of untrusted data can occur in the R statistical programming language, on any version starting at 1.4.0 up to and not including 4.4.0, enabling a maliciously crafted RDS R Data Serialization formatted file or R package to run arbitrary code on an end user's system...

8.8CVSS7.5AI score0.23618EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/06/24 12:0 a.m.20 views

Amazon Linux AMI : R (ALAS-2024-1940)

The version of R installed on the remote host is prior to 3.4.1-1.53. It is, therefore, affected by a vulnerability as referenced in the ALAS-2024-1940 advisory. Deserialization of untrusted data can occur in the R statistical programming language, on any version starting at 1.4.0 up to and not...

8.8CVSS8.3AI score0.23618EPSS
Exploits0References4
Amazon
Amazon
added 2024/06/14 12:0 a.m.6 views

Important: R

Issue Overview: Deserialization of untrusted data can occur in the R statistical programming language, on any version starting at 1.4.0 up to and not including 4.4.0, enabling a maliciously crafted RDS R Data Serialization formatted file or R package to run arbitrary code on an end user's system...

8.8CVSS7.4AI score0.23618EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/06/10 12:0 a.m.16 views

Amazon Linux 2023 : libRmath, libRmath-devel, libRmath-static (ALAS2023-2024-638)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-638 advisory. Deserialization of untrusted data can occur in the R statistical programming language, on any version starting at 1.4.0 up to and not including 4.4.0, enabling a maliciously crafted RDS R Data...

8.8CVSS8.2AI score0.23618EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/05/27 12:0 a.m.19 views

Fedora: Security Advisory for R (FEDORA-2024-bc590cb3f1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.23618EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/05/27 12:0 a.m.18 views

Fedora: Security Advisory (FEDORA-2024-07b7b83a4f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.23618EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/05/09 12:0 a.m.20 views

Fedora 38 : R (2024-bc590cb3f1)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-bc590cb3f1 advisory. Security fix for CVE-2024-27322 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

8.8CVSS8AI score0.23618EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/09 12:0 a.m.23 views

Fedora 39 : R (2024-07b7b83a4f)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-07b7b83a4f advisory. Security fix for CVE-2024-27322 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

8.8CVSS8AI score0.23618EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/02 12:0 a.m.21 views

FreeBSD : R -- arbitrary code execution vulnerability (4a1e2bad-0836-11ef-9fd2-1c697a616631)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 4a1e2bad-0836-11ef-9fd2-1c697a616631 advisory. - Deserialization of untrusted data can occur in the R statistical programming language, on any version...

8.8CVSS8.3AI score0.23618EPSS
Exploits0References3
CISA
CISA
added 2024/05/01 12:0 p.m.6 views

CERT/CC Reports R Programming Language Vulnerability

CERT Coordination Center CERT/CC has released information on a vulnerability in R programming language implementations CVE-2024-27322link is external. A cyber threat actor could exploit this vulnerability to take control of an affected system. Users and administrators are encouraged to review the...

8.8CVSS8.7AI score0.23618EPSS
Exploits0References4
OSV
OSV
added 2024/04/29 1:15 p.m.27 views

CVE-2024-27322

Deserialization of untrusted data can occur in the R statistical programming language, on any version starting at 1.4.0 up to and not including 4.4.0, enabling a maliciously crafted RDS R Data Serialization formatted file or R package to run arbitrary code on an end user’s system when interacted...

8.7AI score
Exploits0References6
NVD
NVD
added 2024/04/29 1:15 p.m.17 views

CVE-2024-27322

Deserialization of untrusted data can occur in the R statistical programming language, on any version starting at 1.4.0 up to and not including 4.4.0, enabling a maliciously crafted RDS R Data Serialization formatted file or R package to run arbitrary code on an end user’s system when interacted...

8.8CVSS8.8AI score0.23618EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2024/04/29 1:2 p.m.42 views

CVE-2024-27322

Deserialization of untrusted data can occur in the R statistical programming language, on any version starting at 1.4.0 up to and not including 4.4.0, enabling a maliciously crafted RDS R Data Serialization formatted file or R package to run arbitrary code on an end user’s system when interacted...

8.8CVSS8.3AI score0.23618EPSS
Exploits0
Cvelist
Cvelist
added 2024/04/29 1:2 p.m.70 views

CVE-2024-27322

Deserialization of untrusted data can occur in the R statistical programming language, on any version starting at 1.4.0 up to and not including 4.4.0, enabling a maliciously crafted RDS R Data Serialization formatted file or R package to run arbitrary code on an end user’s system when interacted...

8.8CVSS8.9AI score0.23618EPSS
Exploits0References6
The Hacker News
The Hacker News
added 2024/04/29 10:50 a.m.19 views

New R Programming Vulnerability Exposes Projects to Supply Chain Attacks

A security vulnerability has been discovered in the R programming language that could be exploited by a threat actor to create a malicious RDS R Data Serialization file such that it results in code execution when loaded and referenced. The flaw, assigned the CVE identifier CVE-2024-27322 CVSS...

8.8CVSS8.4AI score0.23618EPSS
Exploits0
Rows per page
Query Builder