exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 2

CVE-2022-31604

больше 3 лет назад

NVFLARE, versions prior to 2.1.2, contains a vulnerability in its PKI implementation module, where The CA credentials are transported via pickle and no safe deserialization. The deserialization of Untrusted Data may allow an unprivileged network attacker to cause Remote Code Execution, Denial Of Service, and Impact to both Confidentiality and Integrity.

CVSS3: 9.8

EPSS: Низкий

GHSA-rcxc-3w2m-mp8h

больше 3 лет назад

Unsafe deserialisation in the PKI implementation scheme of NVFlare

CVSS3: 9.8

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	CVE-2022-31604 NVFLARE, versions prior to 2.1.2, contains a vulnerability in its PKI implementation module, where The CA credentials are transported via pickle and no safe deserialization. The deserialization of Untrusted Data may allow an unprivileged network attacker to cause Remote Code Execution, Denial Of Service, and Impact to both Confidentiality and Integrity.	CVSS3: 9.8	2% Низкий	больше 3 лет назад
	GHSA-rcxc-3w2m-mp8h Unsafe deserialisation in the PKI implementation scheme of NVFlare	CVSS3: 9.8	2% Низкий	больше 3 лет назад

Уязвимостей на страницу