Lucene search

GitHub_MVULNRICHMENT:CVE-2024-29032

HistoryMar 20, 2024 - 8:30 p.m.

CVE-2024-29032 `qiskit_ibm_runtime.RuntimeDecoder` can execute arbitrary code

2024-03-2020:30:38

CWE-502

GitHub_M

github.com

cve-2024-29032

qiskit_ibm_runtime.runtimedecoder

arbitrary code execution

json data

version 0.1.0

version 0.21.2

CVSS3

5.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

AI Score

7.8

Confidence

High

SSVC

Exploitation

poc

Automatable

Technical Impact

total

JSON

Qiskit IBM Runtime is an environment that streamlines quantum computations and provides optimal implementations of the Qiskit quantum computing SDK. Starting in version 0.1.0 and prior to version 0.21.2, deserializing json data using qiskit_ibm_runtime.RuntimeDecoder can lead to arbitrary code execution given a correctly formatted input string. Version 0.21.2 contains a fix for this issue.

CNA Affected

[
  {
    "vendor": "Qiskit",
    "product": "qiskit-ibm-runtime",
    "versions": [
      {
        "status": "affected",
        "version": ">= 0.1.0, < 0.21.2"
      }
    ]
  }
]

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:qiskit:qiskit-ibm-runtime:0.1.0:*:*:*:*:*:*:*"
    ],
    "vendor": "qiskit",
    "product": "qiskit-ibm-runtime",
    "versions": [
      {
        "status": "affected",
        "version": "0.1.0",
        "lessThan": "0.21.2",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  }
]

References

github.com/Qiskit/qiskit-ibm-runtime/blob/16e90f475e78a9d2ae77daa139ef750cfa84ca82/qiskit_ibm_runtime/utils/json.py#L156-L159

github.com/Qiskit/qiskit-ibm-runtime/commit/b78fca114133051805d00043a404b25a33835f4d

github.com/Qiskit/qiskit-ibm-runtime/security/advisories/GHSA-x4x5-jv3x-9c7m