PT-2018-15240 · Pylearn2 · Pylearn2

Bigbigliang-Malwarebenchmark

Publicado

2018-12-17

Atualizado

2019-01-07

CVE-2018-20027

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Pylearn2 (affected versions not specified)

Description The issue concerns the yaml parse.load method in Pylearn2, which allows code injection.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Code Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

CVE-2018-20027

Pylearn2