Vulnerability Description
rpc.py through 0.6.0 allows Remote Code Execution because an unpickle occurs when the "serializer: pickle" HTTP header is sent. In other words, although JSON (not Pickle) is the default data format, an unauthenticated client can cause the data to be processed with unpickle.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Rpc.Py Project | Rpc.Py | >= 0.4.2, <= 0.6.0 |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/167872/rpc.py-0.6.0-Remote-Code-Execution.hExploitThird Party AdvisoryVDB Entry
- https://github.com/abersheeran/rpc.py/commit/491e7a841ed9a754796d6ab047a9fb16e23PatchThird Party Advisory
- https://github.com/ehtec/rpcpy-exploitExploitThird Party Advisory
- https://medium.com/%40elias.hohl/remote-code-execution-0-day-in-rpc-py-709c76690Exploit
- http://packetstormsecurity.com/files/167872/rpc.py-0.6.0-Remote-Code-Execution.hExploitThird Party AdvisoryVDB Entry
- https://github.com/abersheeran/rpc.py/commit/491e7a841ed9a754796d6ab047a9fb16e23PatchThird Party Advisory
- https://github.com/ehtec/rpcpy-exploitExploitThird Party Advisory
- https://medium.com/%40elias.hohl/remote-code-execution-0-day-in-rpc-py-709c76690Exploit
FAQ
What is CVE-2022-35411?
CVE-2022-35411 is a vulnerability with a CVSS score of 9.8 (CRITICAL). rpc.py through 0.6.0 allows Remote Code Execution because an unpickle occurs when the "serializer: pickle" HTTP header is sent. In other words, although JSON (not Pickle) is the default data format, a...
How severe is CVE-2022-35411?
CVE-2022-35411 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2022-35411?
Check the references section above for vendor advisories and patch information. Affected products include: Rpc.Py Project Rpc.Py.