Fedora: Security Advisory (FEDORA-2024-17a3b4d4c3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 41 : python-rpyc (2024-17a3b4d4c3)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-17a3b4d4c3 advisory. Fix CVE-2024-27758 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...

[SECURITY] Fedora 41 Update: python-rpyc-6.0.1-1.fc41

RPyC, or Remote Python Call, is a transparent and symmetrical python library for remote procedure calls, clustering and distributed-computing. RPyC makes use of object-proxies, a technique that employs python's dynamic nature, to overcome the physical boundaries between processes and computers, s...

OPENSUSE-SU-2024:14162-1 python310-rpyc-6.0.0-1.2 on GA media

These are all security issues fixed in the python310-rpyc-6.0.0-1.2 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2024:11268-1 python36-rpyc-4.1.5-2.7 on GA media

These are all security issues fixed in the python36-rpyc-4.1.5-2.7 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2024:13768-1 python310-rpyc-6.0.0-1.1 on GA media

These are all security issues fixed in the python310-rpyc-6.0.0-1.1 package on the GA media of openSUSE Tumbleweed...

openSUSE 15 Security Update : python-rpyc (openSUSE-SU-2024:0082-1)

The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2024:0082-1 advisory. - In RPyC before 6.0.0, when a server exposes a method that calls the attribute named array for a client-provided netref e.g., np.arrayclientnetref, a...

OPENSUSE-SU-2024:0082-1 Security update for python-rpyc

This update for python-rpyc fixes the following issues: - CVE-2024-27758: Fixed remote code execution via exposed methods boo1221331...

Security update for python-rpyc (important)

openSUSE Security Update: Security update for python-rpyc Announcement ID: openSUSE-SU-2024:0082-1 Rating: important References: 1221331 Cross-References: CVE-2024-27758 Affected Products: openSUSE Backports SLE-15-SP5 An update that fixes one vulnerability is now available. Description: This...

CVE-2024-27758

In RPyC before 6.0.0, when a server exposes a method that calls the attribute named array for a client-provided netref e.g., np.arrayclientnetref, a remote attacker can craft a class that results in remote code execution...

CVE-2024-27758

In RPyC before 6.0.0, when a server exposes a method that calls the attribute named array for a client-provided netref e.g., np.arrayclientnetref, a remote attacker can craft a class that results in remote code execution...

CVE-2024-27758

In RPyC before 6.0.0, when a server exposes a method that calls the attribute named array for a client-provided netref e.g., np.arrayclientnetref, a remote attacker can craft a class that results in remote code execution...

Remote code execution

In RPyC before 6.0.0, when a server exposes a method that calls the attribute named array for a client-provided netref e.g., np.arrayclientnetref, a remote attacker can craft a class that results in remote code execution...

UBUNTU-CVE-2024-27758

In RPyC before 6.0.0, when a server exposes a method that calls the attribute named array for a client-provided netref e.g., np.arrayclientnetref, a remote attacker can craft a class that results in remote code execution...

aedttest (=0.0.2), ansys-magnet-segmentation-toolkit (>=0.3.2 <=0.3.3) +51 more potentially affected by CVE-2024-27758 via rpyc (>=3.3.0 <=5.3.1)

rpyc PYPI version =3.3.0, =0.3.2, =3.0.0, =0.0.25, =0.2.0, =1.0.0, =1.0.0, =1.4.1, =1.0.0, =1.0.0, =0.0.0, =2.10.60, =3.11.20 - fuzzydata =0.0.2 and more Source cves: CVE-2024-27758 Source advisory: OSV:PYSEC-2024-44...

CVE-2024-27758

In RPyC before 6.0.0, when a server exposes a method that calls the attribute named array for a client-provided netref e.g., np.arrayclientnetref, a remote attacker can craft a class that results in remote code execution...

PYSEC-2024-44

In RPyC before 6.0.0, when a server exposes a method that calls the attribute named array for a client-provided netref e.g., np.arrayclientnetref, a remote attacker can craft a class that results in remote code execution...

CVE-2024-27758

CVE-2024-27758 affects RPyC prior to 6.0.0. The issue arises when a server exposes a method that calls the attribute array on a client-provided netref (e.g., np.array(client_netref)), enabling remote code execution. Impact is system compromise with high severity; exploit requires local access/vec...

CVE-2024-27758

In RPyC before 6.0.0, when a server exposes a method that calls the attribute named array for a client-provided netref e.g., np.arrayclientnetref, a remote attacker can craft a class that results in remote code execution...

CVE-2024-27758

In RPyC before 6.0.0, when a server exposes a method that calls the attribute named array for a client-provided netref e.g., np.arrayclientnetref, a remote attacker can craft a class that results in remote code execution...