AVG-1370 log
Package | python-jsonpickle |
Status | Vulnerable |
Severity | Low |
Type | arbitrary code execution |
Affected | 1.5.1-1 |
Fixed | Unknown |
Current | 1.5.1-1 [community] |
Ticket | Create |
Created | Thu Dec 17 20:29:47 2020 |
Issue | Severity | Remote | Type | Description |
---|---|---|---|---|
CVE-2020-22083 | Low | No | Arbitrary code execution | jsonpickle allows arbitrary code execution during deserialisation of a malicious payload through the decode() function. Note: It has been argued that this... |