Vulnerabilities > CVE-2022-44542 - Deserialization of Untrusted Data vulnerability in Lesspipe Project Lesspipe
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
lesspipe before 2.06 allows attackers to execute code via Perl Storable (pst) files, because of deserialized object destructor execution via a key/value pair in a hash.