CVE-2018-3784

Summary

A code injection in cryo 0.0.6 allows an attacker to arbitrarily execute code due to insecure implementation of deserialization.

Affected Software

VendorProductVersion RangeStatus
https://github.com/hunterloftiscryoNot fixedaffected

Weaknesses

  • CWE-94: Code Injection (CWE-94)

ADP Enrichment

CVE Program Container

Additional References

References