CVE-2024-0959 | StanfordVL GibsonEnv 0.3.1 pposgd_fuse.py cloudpickle.load deserialization

Posted by Angelo Barbosa | Jan 26, 2024 | CVE

A vulnerability was found in StanfordVL GibsonEnv 0.3.1. It has been classified as critical. Affected is the function cloudpickle.load of the file gibsonutilspposgd_fuse.py. The manipulation leads to deserialization.

This vulnerability is traded as CVE-2024-0959. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-0959 | StanfordVL GibsonEnv 0.3.1 pposgd_fuse.py cloudpickle.load deserialization

Related Posts

CVE-2024-8642 | Eclipse EDC Connector up to 0.8.x incorrect implementation of authentication algorithm

CVE-2024-3494 | Mesmerize Companion Plugin up to 1.6.148 on WordPress Shortcode mesmerize_contact_form cross site scripting

CVE-2024-29737 | Apache StreamPark up to 2.1.3 Project Module command injection

CVE-2023-6781 | Orbit Fox Companion Plugin up to 2.10.26 on WordPress Custom Fields cross site scripting