lagom 安全漏洞

lagom is a PyTorch infrastructure for rapid prototyping of reinforcement learning algorithms from the Xingdong Zuo personal developer. A security vulnerability exists in lagom version v.0.1.2, which stems from a vulnerability that allows a local attacker to execute arbitrary code via the picklelo...

PT-2024-20900 · Unknown · Zuoxingdong Lagom

Name of the Vulnerable Software and Affected Versions: zuoxingdong lagom version 0.1.2 Description: The issue allows a local attacker to execute arbitrary code via the pickle load function of the serialize.py file. Recommendations: For zuoxingdong lagom version 0.1.2, consider disabling the pickl...