Insecure deserialization of not validated module file in GitHub repository crater-invoice/crater prior to 6.0.6.
References
Link | Resource |
---|---|
https://github.com/crater-invoice/crater/commit/7cde971f8b79579951df98384a5210d25f698af5 | Patch Third Party Advisory |
https://huntr.dev/bounties/cb9a0393-be34-4021-a06c-00c7791c7622 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: @huntrdev
Published: 2022-03-29T07:40:10
Updated: 2022-03-29T07:40:10
Reserved: 2022-03-21T00:00:00
Link: CVE-2022-1032
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-03-29T08:15:07.710
Modified: 2022-04-04T21:25:37.633
Link: CVE-2022-1032
JSON object: View
Redhat Information
No data.
CWE