Lucene search
+L

11 matches found

nessus
nessus
added 2026/01/22 12:0 a.m.7 views

Azure Linux 3.0 Security Update: libarrow (CVE-2024-52338)

The version of libarrow installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-52338 advisory. - Deserialization of untrusted data in IPC and Parquet readers in the Apache Arrow R package versions 4.0.0...

9.8CVSS6.1AI score0.02322EPSS
Exploits0References2
susecve
susecve
added 2025/02/14 4:9 a.m.4 views

SUSE CVE-2024-52338

Deserialization of untrusted data in IPC and Parquet readers in the Apache Arrow R package versions 4.0.0 through 16.1.0 allows arbitrary code execution. An application is vulnerable if it reads Arrow IPC, Feather or Parquet data from untrusted sources for example, user-supplied input files. This...

9.8CVSS9.2AI score0.02322EPSS
Exploits0References3
pypa
pypa
added 2024/11/28 5:15 p.m.13 views

PYSEC-2024-161

Deserialization of untrusted data in IPC and Parquet readers in the Apache Arrow R package versions4.0.0 through 16.1.0 allows arbitrary code execution. An application is vulnerable if it reads Arrow IPC, Feather or Parquet data from untrusted sources for example, user-supplied input files. This...

9.8CVSS7.7AI score0.02322EPSS
Exploits0References3Affected Software1
vulnrichment
vulnrichment
added 2024/11/28 4:31 p.m.19 views

CVE-2024-52338 Apache Arrow R package: Arbitrary code execution when loading a malicious data file

Deserialization of untrusted data in IPC and Parquet readers in the Apache Arrow R package versions 4.0.0 through 16.1.0 allows arbitrary code execution. An application is vulnerable if it reads Arrow IPC, Feather or Parquet data from untrusted sources for example, user-supplied input files. This...

7.1AI score0.02322EPSS
Exploits0References2
ibm
ibm
added 2024/09/25 6:52 p.m.22 views

Security Bulletin: Vulnerability in PyArrow Affects IBM watsonx.data

Summary PyArrow could allow a remote authenticated attacker to execute arbitrary code on the system. This can affect IBM watsonx.data Vulnerability Details CVEID:CVE-2023-47248 DESCRIPTION: PyArrow could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an...

9.8CVSS9.6AI score0.14414EPSS
Exploits0Affected Software1
ibm
ibm
added 2024/02/27 4:15 p.m.54 views

Security Bulletin: PyArrow is vulnerable to CVE-2023-47248 used in IBM Maximo Application Suite - Monitor Component

Summary IBM Maximo Application Suite - Monitor Component uses PyArrow which is vulnerable to CVE-2023-47248. This bulletin identifies the steps to take to address the vulnerability. Vulnerability Details CVEID:CVE-2023-47248 DESCRIPTION: PyArrow could allow a remote authenticated attacker to...

9.8CVSS9.5AI score0.14414EPSS
Exploits0Affected Software1
osv
osv
added 2023/11/17 9:47 p.m.32 views

GHSA-X563-6HQV-26MR Ibis PyArrow dependency allows arbitrary code execution when loading a malicious data file

Impact Deserialization of untrusted data in IPC and Parquet readers in PyArrow versions 0.14.0 to 14.0.0 allows arbitrary code execution. An application is vulnerable if it reads Arrow IPC, Feather or Parquet data from untrusted sources for example user-supplied input files. This vulnerability on...

9.4AI score
Exploits0References4
pypa
pypa
added 2023/11/17 5:41 p.m.8 views

PYSEC-2023-238

Deserialization of untrusted data in IPC and Parquet readers in PyArrow versions 0.14.0 to 14.0.0 allows arbitrary code execution. An application is vulnerable if it reads Arrow IPC, Feather or Parquet data from untrusted sources for example user-supplied input files...

9.8CVSS7.9AI score0.14414EPSS
Exploits0References6Affected Software1
susecve
susecve
added 2023/11/10 1:53 a.m.5 views

SUSE CVE-2023-47248

Deserialization of untrusted data in IPC and Parquet readers in PyArrow versions 0.14.0 to 14.0.0 allows arbitrary code execution. An application is vulnerable if it reads Arrow IPC, Feather or Parquet data from untrusted sources for example user-supplied input files. This vulnerability only...

9.8CVSS8.9AI score0.14414EPSS
Exploits0References3
osv
osv
added 2023/11/09 9:30 a.m.6 views

GHSA-5WVP-7F3H-6WMM PyArrow: Arbitrary code execution when loading a malicious data file

Deserialization of untrusted data in IPC and Parquet readers in PyArrow versions 0.14.0 to 14.0.0 allows arbitrary code execution. An application is vulnerable if it reads Arrow IPC, Feather or Parquet data from untrusted sources for example user-supplied input files. This vulnerability only...

9.8CVSS6AI score0.14414EPSS
Exploits0References12
cvelist
cvelist
added 2023/11/09 8:17 a.m.29 views

CVE-2023-47248 PyArrow, PyArrow: Arbitrary code execution when loading a malicious data file

Deserialization of untrusted data in IPC and Parquet readers in PyArrow versions 0.14.0 to 14.0.0 allows arbitrary code execution. An application is vulnerable if it reads Arrow IPC, Feather or Parquet data from untrusted sources for example user-supplied input files. This vulnerability only...

9.8AI score0.14414EPSS
Exploits0References6
Rows per page
Query Builder