Ops CLI Deserialization of Untrusted Data leads to Abritrary Code Execution

Stammdaten

Kritikalität
CVE ID
CVE-2021-40720
Aktualisiert am:
2024-08-04T02:51:06.543Z
Veröffentlicht am:
2021-10-12T00:00:00
 

Betroffene Produkte

Hersteller:
Adobe
Produkt(e):
Ops-CLI
Betroffene Version:
unspecified, unspecified
 

Beschreibung

Ops CLI version 2.0.4 (and earlier) is affected by a Deserialization of Untrusted Data vulnerability to achieve arbitrary code execution when the checkout_repo function is called on a maliciously crafted file. An attacker can leverage this to execute arbitrary code on the victim machine.
 

Referenzen

 

NIST-Link:


Copyright © 2024 · All Rights Reserved · https://www.tecxero.com | Impressum