2 matches found
EUVD-2023-44333
Malicious code in bioql PyPI...
The vulnerability of the tarExtract function in real-time operating systems like Wind River VxWorks allows attackers to execute arbitrary commands.
The vulnerability of the tarExtract function in real-time operating systems like Wind River VxWorks relates to the ability to bypass the directory structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely by introducing a malicious tar file...