Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2026/05/15 7:57 p.m.11 views

CVE-2026-31223

The snorkel library thru v0.10.0 contains a critical insecure deserialization vulnerability CWE-502 in the BaseLabeler.load method of the BaseLabeler class. The method loads serialized labeler models using the unsafe pickle.load function on user-supplied file paths without any validation or...

8.8CVSS6.5AI score0.00392EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:28 a.m.3 views

SUSE CVE-2014-3539

base/oi/doa.py in the Rope library in CPython aka Python allows remote attackers to execute arbitrary code by leveraging an unsafe call to pickle.load...

9.8CVSS8AI score0.03015EPSS
Exploits0References3
PyPA
PyPA
added 2018/04/06 4:29 p.m.5 views

PYSEC-2018-100

base/oi/doa.py in the Rope library in CPython aka Python allows remote attackers to execute arbitrary code by leveraging an unsafe call to pickle.load...

9.8CVSS8AI score0.03015EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2018/04/06 4:29 p.m.8 views

UBUNTU-CVE-2014-3539

base/oi/doa.py in the Rope library in CPython aka Python allows remote attackers to execute arbitrary code by leveraging an unsafe call to pickle.load...

9.8CVSS7.7AI score0.03015EPSS
Exploits0References3
OSV
OSV
added 2018/04/06 4:29 p.m.26 views

PYSEC-2018-100

base/oi/doa.py in the Rope library in CPython aka Python allows remote attackers to execute arbitrary code by leveraging an unsafe call to pickle.load...

9.8CVSS7.6AI score0.03015EPSS
Exploits0References3
OSV
OSV
added 2018/04/06 4:29 p.m.1 views

DEBIAN-CVE-2014-3539

base/oi/doa.py in the Rope library in CPython aka Python allows remote attackers to execute arbitrary code by leveraging an unsafe call to pickle.load...

9.8CVSS9.5AI score0.03015EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2015/04/01 12:0 a.m.4 views

PT-2018-4213 · Python · Rope +1

Name of the Vulnerable Software and Affected Versions: CPython affected versions not specified Description: The issue allows remote attackers to execute arbitrary code by leveraging an unsafe call to pickle.load in the Rope library. This is due to a problem in the base/oi/doa.py file...

9.8CVSS7.7AI score0.03015EPSS
Exploits0References22
Rows per page
Query Builder