CVE-2020-22083
CVE-2020-22083 affects jsonpickle up to version 1.4.1. The vulnerability enables remote code execution during deserialization of a malicious payload via the decode() function. The description notes this behavior has been argued as expected/documented in pickle usage. Several connected sources cor...