CVE-2020-13092 - OpenCVE

scikit-learn (aka sklearn) through 0.23.0 can unserialize and execute commands from an untrusted file that is passed to the joblib.load() function, if __reduce__ makes an os.system call. NOTE: third parties dispute this issue because the joblib.load() function is documented as unsafe and it is the user's responsibility to use the function in a secure manner

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Scikit-learn	Scikit-learn

Configuration 1 [-]

cpe:2.3:a:scikit-learn:scikit-learn:*:*:*:*:*:*:*:*

References

Link	Resource
https://github.com/0FuzzingQ/vuln/blob/master/sklearn%20unserialize.md	Exploit Third Party Advisory
https://scikit-learn.org/stable/modules/model_persistence.html#security-maintainability-limitations	Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2020-05-15T18:41:33

Updated: 2020-05-18T11:16:54

Reserved: 2020-05-15T00:00:00

Link: CVE-2020-13092

JSON object: View

NVD Information

Status : Modified

Published: 2020-05-15T19:15:12.277

Modified: 2024-05-17T01:42:19.143

Link: CVE-2020-13092

JSON object: View

Redhat Information

No data.

CWE

CWE-502

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "scikit-learn (aka sklearn) through 0.23.0 can unserialize and execute commands from an untrusted file that is passed to the joblib.load() function, if __reduce__ makes an os.system call. NOTE: third parties dispute this issue because the joblib.load() function is documented as unsafe and it is the user's responsibility to use the function in a secure manner"}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2020-05-18T11:16:54", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://github.com/0FuzzingQ/vuln/blob/master/sklearn%20unserialize.md"}, {"tags": ["x_refsource_MISC"], "url": "https://scikit-learn.org/stable/modules/model_persistence.html#security-maintainability-limitations"}], "tags": ["disputed"], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2020-13092", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "** DISPUTED ** scikit-learn (aka sklearn) through 0.23.0 can unserialize and execute commands from an untrusted file that is passed to the joblib.load() function, if __reduce__ makes an os.system call. NOTE: third parties dispute this issue because the joblib.load() function is documented as unsafe and it is the user's responsibility to use the function in a secure manner."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://github.com/0FuzzingQ/vuln/blob/master/sklearn%20unserialize.md", "refsource": "MISC", "url": "https://github.com/0FuzzingQ/vuln/blob/master/sklearn%20unserialize.md"}, {"name": "https://scikit-learn.org/stable/modules/model_persistence.html#security-maintainability-limitations", "refsource": "MISC", "url": "https://scikit-learn.org/stable/modules/model_persistence.html#security-maintainability-limitations"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2020-13092", "datePublished": "2020-05-15T18:41:33", "dateReserved": "2020-05-15T00:00:00", "dateUpdated": "2020-05-18T11:16:54", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:scikit-learn:scikit-learn:*:*:*:*:*:*:*:*", "matchCriteriaId": "BFA8D419-E6D7-4DBF-9554-957975CD6101", "versionEndIncluding": "0.23.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "scikit-learn (aka sklearn) through 0.23.0 can unserialize and execute commands from an untrusted file that is passed to the joblib.load() function, if __reduce__ makes an os.system call. NOTE: third parties dispute this issue because the joblib.load() function is documented as unsafe and it is the user's responsibility to use the function in a secure manner"}, {"lang": "es", "value": "** EN DISPUTA ** scikit-learn (tambi\u00e9n se conoce como sklearn) versiones hasta 0.23.0, puede deserializar y ejecutar comandos desde un archivo no confiable que es pasado hacia la funci\u00f3n joblib.load(), si __reduce__ realiza una llamada os.system. NOTA: terceros disputan este problema porque la funci\u00f3n joblib.load () est\u00e1 documentada como insegura y es responsabilidad del usuario usar la funci\u00f3n de manera segura."}], "id": "CVE-2020-13092", "lastModified": "2024-05-17T01:42:19.143", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2020-05-15T19:15:12.277", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://github.com/0FuzzingQ/vuln/blob/master/sklearn%20unserialize.md"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://scikit-learn.org/stable/modules/model_persistence.html#security-maintainability-limitations"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-502"}], "source": "nvd@nist.gov", "type": "Primary"}]}