3 matches found
CVE-2024-37064
Deseriliazation of untrusted data can occur in versions 3.7.0 or newer of Ydata's ydata-profiling open-source library, enabling a maliciously crafted dataset to run arbitrary code on an end user's system when loaded...
CVE-2024-37064
The CVE-2024-37064 entry concerns a vulnerability in the ydata-profiling open-source library where insecure deserialization of untrusted data in versions 3.7.0 and newer can allow a malicious dataset to execute arbitrary code on an end user’s system when loaded. The issue is associated with Ydata...
CVE-2024-37064
Deseriliazation of untrusted data can occur in versions 3.7.0 or newer of Ydata's ydata-profiling open-source library, enabling a maliciously crafted dataset to run arbitrary code on an end user's system when loaded...