CyberSec.Space Logo
CVEブラウザに戻る

CVE-2013-7489

MEDIUM
6.8
CVSS Severity Score
EPSS Score0.1590%
EPSS Percentile39.83th
Published2020年6月26日
Last Modified2024年11月21日

Vulnerability Description

The Beaker library through 1.11.0 for Python is affected by deserialization of untrusted data, which could lead to arbitrary code execution.

Affected Platforms (CPE)

📦
Beakerbrowser

Beaker

<= 1.11.0

References & Advisories

🔗 https://bugzilla.redhat.com/show_bug.cgi?id=1850105
🔗 https://github.com/bbangert/beaker/issues/191
🔗 https://www.openwall.com/lists/oss-security/2020/05/14/11
🔗 https://bugzilla.redhat.com/show_bug.cgi?id=1850105
🔗 https://github.com/bbangert/beaker/issues/191
🔗 https://www.openwall.com/lists/oss-security/2020/05/14/11

関連する脆弱性情報

CVE-2020-1207910.0

Beaker before 0.8.9 allows a sandbox escape, enabling system access and code execution. This occurs because Electron context isola...

CVE-2019-103985.5

Jenkins Beaker Builder Plugin 1.9 and earlier stored credentials unencrypted in its global configuration file on the Jenkins maste...

CVE-2015-31625.4

Cross-site scripting (XSS) vulnerability in the edit comment dialog in bkr/server/widgets.py in Beaker 20.1 allows remote authenti...

CVE-2015-31614.8

The search bar code in bkr/server/widgets.py in Beaker before 20.1 does not escape </script> tags in string literals when producin...