6 matches found
CVE-2024-25359
An issue in zuoxingdong lagom v.0.1.2 allows a local attacker to execute arbitrary code via the pickleload function of the serialize.py file...
CVE-2024-25359
An issue in zuoxingdong lagom v.0.1.2 allows a local attacker to execute arbitrary code via the pickleload function of the serialize.py file...
Design/Logic Flaw
An issue in zuoxingdong lagom v.0.1.2 allows a local attacker to execute arbitrary code via the pickleload function of the serialize.py file...
CVE-2024-25359
An issue in zuoxingdong lagom v.0.1.2 allows a local attacker to execute arbitrary code via the pickleload function of the serialize.py file...
PT-2024-20900 · Unknown · Zuoxingdong Lagom
Name of the Vulnerable Software and Affected Versions: zuoxingdong lagom version 0.1.2 Description: The issue allows a local attacker to execute arbitrary code via the pickle load function of the serialize.py file. Recommendations: For zuoxingdong lagom version 0.1.2, consider disabling the pickl...
CVE-2024-25359
CVE-2024-25359 affects zuoxingdong lagom v0.1.2. The issue allows a local attacker to execute arbitrary code via the pickle_load function in serialize.py. CVSS v3.1 metrics indicate Local attack vector, Low attack complexity, Privileges Required Low, with High confidentiality impact and Moderate ...