Remote Code Execution (RCE)

Overview picklescan is a Security scanner detecting Python Pickle files performing suspicious actions Affected versions of this package are vulnerable to Remote Code Execution RCE due to insufficient detection in the evaluateguardsexpression function. An attacker can execute arbitrary code by...

GHSA-F4X7-RFWP-V3XW Picklescan missing detection when calling pytorch function torch.fx.experimental.symbolic_shapes.ShapeEnv.evaluate_guards_expression

Summary Using torch.fx.experimental.symbolicshapes.ShapeEnv.evaluateguardsexpression function, which is a pytorch library function to execute remote pickle file. Details The attack payload executes in the following steps: First, the attacker craft the payload by calling to...

Picklescan missing detection when calling pytorch function torch.fx.experimental.symbolic_shapes.ShapeEnv.evaluate_guards_expression

Summary Using torch.fx.experimental.symbolicshapes.ShapeEnv.evaluateguardsexpression function, which is a pytorch library function to execute remote pickle file. Details The attack payload executes in the following steps: First, the attacker craft the payload by calling to...

Reolink App 安全漏洞

Reolink App is a mobile application from Reolink USA. A security vulnerability exists in Reolink App version v4.54.0.4.20250526, which stems from the evaluateJavascript function not handling input correctly, which could lead to a cross-site scripting attack...

Arbitrary Code Injection

Overview smolagents is a 🤗 smolagents: a barebones library for agents. Agents write python code to call tools or orchestrate other agents. Affected versions of this package are vulnerable to Arbitrary Code Injection via the evaluatename function in the localpythonexecutor.py file. An attacker can...

ROS-20250624-13

Vulnerability of path.evaluate or path.evaluateTruthy compiler for writing JavaScript code Babel is related to an incorrect comparison. Exploitation of the vulnerability could allow an attacker to execute arbitrary code...

ADC13.1-How to use a data set to evaluate or check the IP address in the X-Forwarded-For header

This article describes how to use a data set to evaluate or check the IP address in the X-Forwarded-For header...

The vulnerability of the `evaluate` function in the BusyBox command-line utility set allows a hacker to cause a service failure.

The vulnerability of the evaluate function in the BusyBox command-line utilities is related to an incorrect use after its initialization. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

CVE-2023-39631

An issue in LanChain-ai Langchain v.0.0.245 allows a remote attacker to execute arbitrary code via the evaluate function in the numexpr library...

CVE-2022-45926

An issue was discovered in OpenText Content Suite Platform 22.1 16.2.19.1803. The endpoint notify.localizeEmailTemplate allows a low-privilege user to evaluate webreports...

kernel: drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported acpievaluateobject may return AENOTFOUND failure, which would result in dereferencing buffer.pointer obj while being NULL. Although this case may be unrealisti...

SUSE CVE-2022-49855

In the Linux kernel, the following vulnerability has been resolved: net: wwan: iosm: fix memory leak in ipcpciereadbioscfg ipcpciereadbioscfg is using the acpievaluatedsm to obtain the wwan power state configuration from BIOS but is not freeing the acpiobject. The acpievaluatedsm returned...

CVE-2022-49855

In the Linux kernel, the following vulnerability has been resolved: net: wwan: iosm: fix memory leak in ipcpciereadbioscfg ipcpciereadbioscfg is using the acpievaluatedsm to obtain the wwan power state configuration from BIOS but is not freeing the acpiobject. The acpievaluatedsm returned...

CVE-2020-19248

SQL Injection vulnerability in PbootCMS 1.4.1 in parsing if statements in templates, resulting in a malicious user's ability to contaminate template content by searching for page contamination URLs, thus triggering vulnerabilities when the program uses eval statements to parse templates...

PT-2025-40594

Name of the Vulnerable Software and Affected Versions Redis versions 5.7.0 through 5.8.0 Redict versions 7.3.2+ds-1ubuntu0.1 Valkey versions prior to 8.1.1+dfsg1-3+deb13u1 Description Redis and Redict are vulnerable to a Lua scripting interface issue that could allow an authenticated attacker to...

OESA-2024-2440 busybox security update

BusyBox combines tiny versions of many common UNIX utilities into a single small executable. It provides replacements for most of the utilities you usually find in GNU fileutils, shellutils, etc. It provides a fairly complete environment for any small or embedded system. Security Fixes: A...

SUSE CVE-2024-53060

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported acpievaluateobject may return AENOTFOUND failure, which would result in dereferencing buffer.pointer obj while being NULL. Although this case may be unrealisti...

AZL-53981 CVE-2024-53060 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported acpievaluateobject may return AENOTFOUND failure, which would result in dereferencing buffer.pointer obj while being NULL. Although this case may be unrealisti...

AZL-53967 CVE-2024-53060 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported acpievaluateobject may return AENOTFOUND failure, which would result in dereferencing buffer.pointer obj while being NULL. Although this case may be unrealisti...

DEBIAN-CVE-2024-53060

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported acpievaluateobject may return AENOTFOUND failure, which would result in dereferencing buffer.pointer obj while being NULL. Although this case may be unrealisti...