A code injection in cryo 0.0.6 allows an attacker to arbitrarily execute code due to insecure implementation of deserialization.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://hackerone.com/reports/350418 |
![]() ![]() |
History
No history.

Status: PUBLISHED
Assigner: hackerone
Published: 2018-08-17T13:00:00
Updated: 2024-08-05T04:50:30.738Z
Reserved: 2017-12-28T00:00:00
Link: CVE-2018-3784

No data.

Status : Modified
Published: 2018-08-17T13:29:00.407
Modified: 2024-11-21T04:06:04.140
Link: CVE-2018-3784

No data.