Lucene search
GoogleOSV:PYSEC-2021-330HistorySep 10, 2021 - 10:15 p.m.
PYSEC-2021-330
2021-09-1022:15:00
Google
osv.dev
7
yaml deserialization
remote code execution
parlai
EPSS
0.115
Percentile
95.3%
Due to use of unsafe YAML deserialization logic, an attacker with the ability to modify local YAML configuration files could provide malicious input, resulting in remote code execution or similar risks. This issue affects ParlAI prior to v1.1.0.
Related
osv
osv
PYSEC-2021-334
2021-09-10 23:15:00
Deserialization of Untrusted Data in parlai
2021-09-13 20:05:39
CVE-2021-24040
2021-09-10 22:15:07
prion
prion
Deserialization of untrusted data
2021-09-10 23:15:00
Design/Logic Flaw
2021-09-10 22:15:00
zdt
zdt
nvd
nvd
CVE-2021-24040
2021-09-10 22:15:07
CVE-2021-39207
2021-09-10 23:15:07
cvelist
cvelist
CVE-2021-24040
2021-09-10 22:10:10
CVE-2021-39207 Deserialization of Untrusted Data in parlai
2021-09-10 22:20:09
packetstorm
packetstorm
Facebook ParlAI 1.0.0 Code Execution / Deserialization
2021-09-14 00:00:00
github
github
Deserialization of Untrusted Data in ParlAI
2021-09-13 20:06:14
Deserialization of Untrusted Data in parlai
2021-09-13 20:05:39
cve
cve
CVE-2021-24040
2021-09-10 22:15:07
CVE-2021-39207
2021-09-10 23:15:07
cnvd
cnvd
parlai code issue vulnerability
2021-09-14 00:00:00
exploitdb
exploitdb
Facebook ParlAI 1.0.0 - Deserialization of Untrusted Data in parlai
2021-09-13 00:00:00