CVE-2024-27322 in The R Projectinformación

Resumen

por MITRE • 2024-04-29

Deserialization of untrusted data can occur in the R statistical programming language, on any version starting at 1.4.0 up to and not including 4.4.0, enabling a maliciously crafted RDS (R Data Serialization) formatted file or R package to run arbitrary code on an end user’s system when interacted with.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Responsable

HiddenLayer

Reservar

2024-02-23

Divulgación

2024-04-29

Moderación

aceptado

Artículo

VDB-262364

CPE

listo

EPSS

0.23618

KEV

no

Actividades

muy bajo

Fuentes

Interested in the pricing of exploits?

See the underground prices here!