cve/CVE-2024-27322.md at ba290685fe22de220a539dbecbe46bd650f1a0d5

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-06-19 17:30:12 +00:00

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

Description

Deserialization of untrusted data can occur in the R statistical programming language, on any version starting at 1.4.0 up to and not including 4.4.0, enabling a maliciously crafted RDS (R Data Serialization) formatted file or R package to run arbitrary code on an end user’s system when interacted with.

POC

Reference

No PoCs from references.

Github

https://github.com/hrbrmstr/rdaradar
https://github.com/vin01/bogus-cves

853 B Raw Blame History Unescape Escape

CVE-2024-27322

Description

POC

Reference

Github

853 B

Raw Blame History