Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Veracode
Veracodeadded 2024/03/21 9:49 a.m.10 views

Code Injection

qiskitibmruntime is vulnerable to Code Injection. The vulnerability is due to the presence of the eval method within the Options.getprograminputs function, which allows an attacker to inject and execute arbitrary code within the application's context...

8AI score
Exploits0
Veracode
Veracodeadded 2024/03/21 9:14 a.m.15 views

Arbitrary Code Execution

qiskitibmruntime is vulnerable to Arbitrary Code Execution. The vulnerability is due to insufficient input validation during the deserialization of JSON data using qiskitibmruntime.RuntimeDecoder. This lack of proper validation allows an attacker to craft malicious input strings that, when...

5.3CVSS7.2AI score0.0007EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2024/03/20 3:44 p.m.19 views

GHSA-X4X5-JV3X-9C7M `qiskit_ibm_runtime.RuntimeDecoder` can execute arbitrary code

Summary deserializing json data using qiskitibmruntime.RuntimeDecoder can be made to execute arbitrary code given a correctly formatted input string Details RuntimeDecoder is supposed to be able to deserialize JSON strings containing various special types encoded via RuntimeEncoder. However, one...

5.3CVSS5.9AI score0.0007EPSS
Exploits1References5
Rows per page
Query Builder