Vulnerabilities > CVE-2013-7489 - Deserialization of Untrusted Data vulnerability in Beakerbrowser Beaker
Attack vector
ADJACENT_NETWORK Attack complexity
LOW Privileges required
HIGH Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
The Beaker library through 1.11.0 for Python is affected by deserialization of untrusted data, which could lead to arbitrary code execution.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
References
- https://bugzilla.redhat.com/show_bug.cgi?id=1850105
- https://bugzilla.redhat.com/show_bug.cgi?id=1850105
- https://github.com/bbangert/beaker/issues/191
- https://github.com/bbangert/beaker/issues/191
- https://www.openwall.com/lists/oss-security/2020/05/14/11
- https://www.openwall.com/lists/oss-security/2020/05/14/11