CVE-2024-27322 in The R Projectinformazioni

Riassunto

di MITRE • 29/04/2024

Deserialization of untrusted data can occur in the R statistical programming language, on any version starting at 1.4.0 up to and not including 4.4.0, enabling a maliciously crafted RDS (R Data Serialization) formatted file or R package to run arbitrary code on an end user’s system when interacted with.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Responsabile

HiddenLayer

Prenotare

23/02/2024

Divulgazione

29/04/2024

Moderazione

accettato

CPE

pronto

EPSS

0.23618

KEV

no

Attività

molto basso

Fonti

Do you know our Splunk app?

Download it now for free!