CyberSec.Space Logo
Back to CVE Browser

CVE-2013-7489

MEDIUM
6.8
CVSS Severity Score
EPSS Score0.1590%
EPSS Percentile39.83th
PublishedJun 26, 2020
Last ModifiedNov 21, 2024

Vulnerability Description

The Beaker library through 1.11.0 for Python is affected by deserialization of untrusted data, which could lead to arbitrary code execution.

Affected Platforms (CPE)

πŸ“¦
Beakerbrowser

Beaker

<= 1.11.0

References & Advisories

πŸ”— https://bugzilla.redhat.com/show_bug.cgi?id=1850105
πŸ”— https://github.com/bbangert/beaker/issues/191
πŸ”— https://www.openwall.com/lists/oss-security/2020/05/14/11
πŸ”— https://bugzilla.redhat.com/show_bug.cgi?id=1850105
πŸ”— https://github.com/bbangert/beaker/issues/191
πŸ”— https://www.openwall.com/lists/oss-security/2020/05/14/11

Related Vulnerabilities

CVE-2020-1207910.0

Beaker before 0.8.9 allows a sandbox escape, enabling system access and code execution. This occurs because Electron context isola...

CVE-2019-103985.5

Jenkins Beaker Builder Plugin 1.9 and earlier stored credentials unencrypted in its global configuration file on the Jenkins maste...

CVE-2015-31625.4

Cross-site scripting (XSS) vulnerability in the edit comment dialog in bkr/server/widgets.py in Beaker 20.1 allows remote authenti...

CVE-2015-31614.8

The search bar code in bkr/server/widgets.py in Beaker before 20.1 does not escape </script> tags in string literals when producin...