CVE-2024-27322 in The R Projectinformação

Sumário

de MITRE • 29/04/2024

Deserialization of untrusted data can occur in the R statistical programming language, on any version starting at 1.4.0 up to and not including 4.4.0, enabling a maliciously crafted RDS (R Data Serialization) formatted file or R package to run arbitrary code on an end user’s system when interacted with.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Responsável

HiddenLayer

Reservar

23/02/2024

Divulgação

29/04/2024

Moderação

aceite

Entrada

VDB-262364

CPE

pronto

EPSS

0.23618

KEV

não

Atividades

muito baixo

Fontes

Might our Artificial Intelligence support you?

Check our Alexa App!